Hi @All,
we´ve a backup connection between to DC´s over an XCONNECT over IPSEC Tunnel.
This run stable for several years on two 3845ISR, with a max performance ~180MBit/s (limited by CPU).
This was long time enough, but we decide to change the router with 3945, which have much more power
and so we get more bandwith. But after the Hardware change we got not more than 180-200MBit/s.
I can´t see any errors, CPU usage max 20%.... I´ve no more ideas....
Here some configuration parts:
pseudowire-class DCCONNECTION
encapsulation l2tpv3
protocol none
ip local interface Loopback0
interface Loopback0
ip address 10.255.1.19 255.255.255.255
ip ospf 255 area 0
int tun 1
ip address 10.255.255.41 255.255.255.252
no ip redirects
ip mtu 1360
no ip split-horizon eigrp 1
ip tcp adjust-mss 1320
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 abc
ip ospf network point-to-point
ip ospf mtu-ignore
ip ospf 255 area 0
tunnel source GigabitEthernet0/0
tunnel mode ipsec ipv4
tunnel destination x.x.x.x
tunnel vrf OUTSIDE
tunnel protection ipsec profile DC
int gi0/1 (Interface to LAN Switch/Trunk)
no ip address
load-interval 30
duplex auto
speed auto
media-type rj45
xconnect 10.255.1.20 1 encapsulation l2tpv3 manual pw-class DCCONNECTION
l2tp id 111 222
The ISP speed is on both sides 1GBit/s, so there is enough bandwith to the Internet.
The physical distance between both DC are ~15km and on both sides is the same ISP.
So we´ve only 3 hops on ISP side and low latency.....
Does any one has an idea...?
Thanks a lot....
