LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
Search this Thread
Old 02-18-2005, 09:54 AM   #1
fr_laz
Member
 
Registered: Jan 2005
Location: Cork Ireland
Distribution: Debian
Posts: 384

Rep: Reputation: 32
VPN load traffic


Hi,

here it is : in my company we're discussing about configuring vpn tunnels. We work with government and thus use its WAN. Nowadays we only use encrypted protocols, but would like to use snmp, ftp and other common uncyphered protocols.

The wan is only 128kbytes/s in some agencies, so I was wondering wether setting on VPN would increase the traffic load...

I know the main problem is usually cpu load, but in my case, that shouldn't be a problem because we've got recent machines.

Since we're on a private WAN, I think using low level encryption would be enough (simple des).
So question 1 :
Will des really be lighter than aes ? or does this affect only the cpu use ?

I know that a part of overhead will come from ISAKMP, but I thought configuring a 24 hours rotation time or so.
Thus question 2 is :
Is this a huge security hole, or does this sound acceptable ?
 
Old 02-18-2005, 10:47 AM   #2
Matir
Moderator
 
Registered: Nov 2004
Location: San Jose, CA
Distribution: Ubuntu
Posts: 8,507

Rep: Reputation: 117Reputation: 117
I'm not sure about the security of your ISAKMP settings, but what I can tell you is this: network overhead for VPN is negligible. Encrypted data is 1:1 in size with the raw data, so the only overhead is that that makes up the VPN protocol. Very little.
 
Old 02-19-2005, 07:34 AM   #3
fr_laz
Member
 
Registered: Jan 2005
Location: Cork Ireland
Distribution: Debian
Posts: 384

Original Poster
Rep: Reputation: 32
Thanks for your reply.

I thought there was no reason that encrypting data should increase its size, but when realizing, I didn't want to take the chances.

Bye
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
VPN Traffic on Windows bLaDe Linux - Networking 5 03-24-2005 03:32 PM
Help routing traffic over Freeswan VPN Trd79 Linux - Networking 0 06-17-2004 05:38 AM
Routing traffic to VPN connection nadams Linux - Networking 4 12-09-2003 09:19 AM
Internet traffic causes ~70% CPU load petermbm Slackware 6 10-14-2003 11:51 AM
redirecting vpn traffic brb5548 Linux - Networking 1 07-01-2003 01:13 PM


All times are GMT -5. The time now is 02:05 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration