10-13-2004 04:07 PM - edited 03-02-2019 07:14 PM
Hi there
We have 2 1710 routers and both seem to he very poor throughput. I realsi that one interface is only 10Mbps but we are only getting sustained transfer rates equivalent to 2.4Mbps through each router. When I view a graph of the port utilization while doing a large file transfer I can see that the ethernet0 port peaks from time to time at around 10Mbps but keeps dropping back to 0 every few minutes - it is this drop down to 0% utilization which is affecting the throughput I think (as opposed to max throughput not being high enough).
The routers are between our DMZ and 2 private networks. They both take part in VPNs. One is a site to site VPN and EZVPN server (for 2 different VPNs) and the other is an EZVPN client. When I deconfigure the VPNs there is no increase in performance.
Does anybody have any ideas about improving the performance or is this the best I can expect from a 1710?
Thanks - config to follow:
10-13-2004 04:08 PM
The config:
version 12.2
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug uptime
service timestamps log uptime
service password-encryption
service sequence-numbers
!
hostname XXXXXX
!
logging queue-limit 100
logging buffered 51200 debugging
logging console critical
enable secret 5 XXXXXX
!
username XXXXXX privilege 15 password 7 XXXXXX
memory-size iomem 25
clock timezone NZST 12
clock summer-time NZDT recurring 1 Sun Oct 2:00 3 Sun Mar 3:00
aaa new-model
!
!
aaa authentication login default local
aaa authentication ppp default group radius local
aaa authorization network default group radius local
aaa authorization network XXXXXX local
aaa session-id common
ip subnet-zero
no ip source-route
!
!
ip tcp synwait-time 10
ip domain name XXXXXX
ip name-server XXXXXX
ip name-server XXXXXX
ip name-server XXXXXX
!
no ip bootp server
ip audit notify log
ip audit po max-events 100
ip ssh time-out 60
ip ssh authentication-retries 2
vpdn enable
!
vpdn-group L2TP_Windows2000Client
! Default L2TP VPDN group
accept-dialin
protocol l2tp
virtual-template 1
!
vpdn-group PPTP_Windows2000Client
! Default PPTP VPDN group
accept-dialin
protocol pptp
virtual-template 2
!
!
!
!
!
!
!
!
crypto ipsec client ezvpn XXXXXX
connect auto
group XXXXXX key XXXXXX
mode network-extension
peer XXXXXX
!
!
!
!
!
interface Loopback0
ip address 172.16.10.100 255.255.255.0
!
interface Ethernet0
description DMZ Interface
ip address 192.168.1.150 255.255.255.0
ip route-cache flow
ip tcp adjust-mss 1375
duplex full
crypto ipsec client ezvpn XXXXXX
no ip nat outside
!
interface FastEthernet0
description Internal Interface
ip address 10.4.100.50 255.255.0.0
ip route-cache flow
ip tcp adjust-mss 1375
speed 100
full-duplex
crypto ipsec client ezvpn XXXXXX inside
no ip nat inside
!
interface Virtual-Template1
ip unnumbered Loopback0
ip nat inside
peer default ip address pool l2tppool
ppp authentication ms-chap
!
interface Virtual-Template2
ip unnumbered Loopback0
ip nat inside
peer default ip address pool pptppool
ppp encrypt mppe 40
ppp authentication ms-chap
!
no ip nat inside source list 102 interface Ethernet0 overload
ip classless
ip route 0.0.0.0 0.0.0.0 Ethernet0 192.168.1.100 permanent
ip http server
ip http authentication local
ip http secure-server
!
!
!
logging trap debugging
dialer-list 1 protocol ip permit
!
snmp-server community public RO
snmp-server location Central Node Internal/DMZ
snmp-server contact Network Adminstrator,XXXXXX
snmp-server enable traps tty
radius-server host 10.4.4.1 auth-port 1645 acct-port 1646
radius-server retransmit 2
radius-server key 7 XXXXXX
radius-server authorization permit missing Service-Type
banner motd ^XXXXXX
Access to the XXXXXX network is prohibited without the prior permission of XXXXXX.^C
!
line con 0
transport output telnet
line aux 0
transport output telnet
line vty 0 4
privilege level 15
transport input telnet ssh
line vty 5 15
privilege level 15
transport input telnet ssh
!
scheduler allocate 4000 1000
scheduler interval 500
end
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide