1

This weekend, I cutover my home network to OPNsense on Proxmox.

So far, it's been... OK. I'm having some issues with state tracking on a couple of VLANs, so need to dig into some pcaps from my switch and see what's going on there.

But one question I have is how to get the best out of my hardware, as it seems my WAN speed is a lot less than it should be.

I'm running Proxmox on a HP DL360 G6, with the pair of built-in 1Gbps NICs. One NIC is dedicated to my WAN connection, using a bridge in Proxmox, and it's plugged in directly to my 1Gbps fibre internet.

The OPNsense VM has 4 cores, 8GB of RAM, and a 40GB volume.

Using my previous hardware router/firewall (Draytek VIgor 2865), I was easily getting some decent speeds - 500Mbps to 700Mbps+. But, I'm lucky if I can get speeds any higher than about 120Mbps right now through OPNsense.

I've disabled hardware checksum offload and hardware TCP segmentation in the OPNsense firewall. Then I found this post that suggested doing the same to the NIC and bridge in Proxmox as well.

I've even tried rate limiting the interfaces on the OPNsense VM to 1000Mbps (OPNsense says they're 10Gbps), but nothing's made a difference.

So, throwing out to my newfound Lemmy network: does anyone have any suggestions on what to try, or look at, next, please? Kinda worried I might have to go back to the Draytek, which would be a real shame. OPNsense has already proven to be far superior in every other way.

top 1 comments
sorted by: hot top controversial new old
[-] DeltaTangoLima@reddrefuge.com 3 points 1 year ago

OK, move along folks - nothing to see here.

*mumbling* *shuffles feet* *kicks imaginary rock* I might've just swapped out a dodgy Cat-6A cable and it came good at 1Gbps...

MIGHT have...

this post was submitted on 02 Jul 2023
1 points (100.0% liked)

Selfhosted

40183 readers
516 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS