Asus RT-AC88U

spikemixturespikemixture
in Other Devices VPN Setup
I have the very latest Asus firmware that allows for Asus new mesh setup.
I can setup the open vpn by importing the opvn file of my choice and I get this result 
 - complete, Lack of Certificate Revocation List(Optional), Lack of Certificate Authority.

I then import/upload the proper CA file (ca.rsa.2048.crt) 
All seems to work and when trying to activate i get the blue circle with the blue cross.

Suggestions please.

Comments

  • [Deleted User][Deleted User]
    I just took a look at your ticket in our system, and sent a reply. It's often easier to troubleshoot these things through the conventional ticketing system since we often need to see screenshots and logs to determine the root cause of the issue. 
  • p2674892p2674892
    edited February 2018
    Note: This post is about VPN behavior on the ASUS RT-88U/AC3100 style router; not in response to the OP.

    I have two ASUS RT-AC3100 units , which I believe are internally equivalent to the RT-AC88U except for having only 4-LAN ports.  The processor and available memory are identical last I checked.  My cable modem WAN is connected to the primary AC3100 and my secondary router, used as a client on a subnet and dedicated for VPN use, provides continuous house-wide access to the encrypted tunnel.

    I was interested in determining to what degree did the VPN affect my incoming 150 MBit/second Internet connection. The ASUS firmware allows for a large number of server configuration files to be entered.  I tested both 4096 bit and 2048-bit certificate files for California and Phoenix (US West) nearest my locale.

    When activating the standard 2048-bit encryption VPN on the California server, I get 27MBit/second throughput (Ookla) with a ping of 24 ms.  When using the strong 4096-bit encryption VPN on the California server, I get 18.4MBit/sec throughput with a ping of 25 ms.  This suggests that the rate-limiting factor is the processor speed and/or quantity/type of memory chosen when the router was designed.  In other words, ASUS is providing a router with the convenience of VPN configuration, but their number one priority was not robustness.  The stronger the encryption chosen, the harder the processor must work, and the slower the effective throughput for devices served by the subnet's IP.  Deactivating any VPN on the subnet router results in the full 150MBit throughput.
    So this slowdown is hardware related and not a consequence of old firmware...these routers have the latest.  If I get adventurous, I might flash the router's firmware with DD-WRT and see if that allows for better speeds. If anyone has a suggestion for a different model router that might have better VPN throughput, kindly share what you find.  Thanks.

Sign In or Register to comment.