08-14-2013 01:05 PM - edited 03-04-2019 08:45 PM
Hello,
I need some guidelines on how I can improve performance for our XenDesktop users in Singapore complaining about slowness with email and worksite document management system now centralised in London.
Currently we have Implemented Cisco 3925 routers with GRE VPN over IPSEC using EIGRP protocol between remote office and London. Also running latest riverbed a which provided citrix ica optimisation. Singapore have a local 10mb internet connection and London 80mb.
I understand that the encryption and decryption of packets adds additional latency as opposed to using Citrix over normal Internet connection.
Is there anything I need to do on the Cisco 3925 that will help increase performance ?
Any advice and guidelines would be welcome.
Sent from Cisco Technical Support iPhone App
08-14-2013 01:34 PM
You can do GRE without encryption. That will decrease latency, increase MTU, and be beneficial.
08-14-2013 01:35 PM
Disclaimer
The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.
Liability Disclaimer
In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.
Posting
Some things to insure, if you're not doing already.
Insure your VPN routers have very little need to fragment packets.
Don't share your Internet VPN links with non-VPN traffic.
Use shapers to insure any congestion can be managed by you.
Prioritize Citrix traffic over other traffic, except perhaps for real-time traffic (e.g. VoIP).
Insure your average Citrix doesn't exceed 50% of bandwidth, better would be not to exceed 1/3.
If your Citrix allows for disk-to-disk and/or printing, use NBAR to prioritize that traffic lower than Citrix screen scraping traffic.
PS:
If your applications have moved from LAN to WAN, especially on the other side of the world, realize even at very best, no WAN can perform as well as the LAN due to distance based latency.
08-14-2013 02:20 PM
GRE without encryption , can this be removed between specific sites or does this have to be done for all sites ? If how do I configure ?
MTU between tunnels is set to 1400 due to GRE packet header overhead.
Is there any configuration examples for prioritising Citrix traffic on Cisco 3925 ?
I guess it would make sense since we share VPN traffic with Internet wireless traffic.
Sent from Cisco Technical Support iPhone App
08-14-2013 02:46 PM
Just configure gre/multipoint DMVPN.
08-14-2013 03:03 PM
No sorry that is alot of disruption and down time.
Sent from Cisco Technical Support iPhone App
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide