07-06-2020 09:46 AM
Hi,
I have a Cisco ASA 5516-X with AnyConnect Premium. My home network is around 120 Mbps download and 20 Mbps upload and in the office we have a 200 Mbps leased line but whenever I download or upload a file to the server my transfer speed tends to be between 1-5 Mbps.
Any ideas on how to improve network performance?
07-06-2020 10:41 AM - edited 07-06-2020 11:55 AM
Hi
Are you using an IPsec or SSL/TLS VPN? If using TLS ensure you are using DTLS 1.2, instead of just TLS. You will need to be running ASA version 9.10 or greater and Anyconnect 4.7 or greater to use DTLS 1.2.
Refer to the link below for additional ASA RAVPN best practices
HTH
07-07-2020 02:16 AM
We are currently using IKEv2 IPsec with ASA version 9.5 and AnyConnect 4.3
07-07-2020 05:10 AM
07-08-2020 01:54 AM
IKEv2 IPsec will be slower than DTLS 1.2. The latter uses connectionless UDP over port 443.
Still, you should be able to achieve > 5 Mbps you're observing. But there are so many factors at work it's hard to say which is slowing things down. Everything from your home network (wired vs WiFi), other users on your networks, your ISP, your company's ISP, etc. can affect this.
06-02-2021 08:11 AM - edited 06-02-2021 08:11 AM
I have similar problem. I was told DTLS 1.2 is not supported on ASA 5516. Is this true? My ASA is 9.12 and Anyconnect is 4.7 Is this true?
06-02-2021 08:17 AM
Yes, it is true - DTLS 1.2 is NOT supported on the ASA 5506, 5508 and 5516 hardware.
Reference:-
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvn63389/?rfs=iqvred
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide