1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

TomatoVPN ok for how many remote users?

Discussion in 'Tomato Firmware' started by cavenewt, Jan 30, 2010.

  1. cavenewt

    cavenewt Addicted to LI Member

    I have a WRT54GL which has been running Tomato 1.23 quite happily for a year or two. I'd like to investigate setting up a VPN, which I do not have any experience with, so please forgive any stupid questions.

    My understanding is that once a remote user has connected to the VPN, they have access to all the resources on the LAN as if they were actually there--file servers, printers, etc. Have I got it right?

    We have about 50 users on our LAN, mostly Macs. It would be nice to have remote access for a few users (probably not more than 3-5 concurrent). They would mostly be accessing file sharing on an XServe and working with a timeclock which has a web-based GUI. At the moment I have remote file sharing accessible by opening Port 548 on the router and forwarding it to the server (which does not have SMB enabled), but I'd like to improve security.

    There is the free Tunnelblick client, is that a good one?

    In researching this, I've seen a couple of people mention that TomatoVPN and/or the WRT54GL can't really handle more than one remote user at a time. Is this true?

    Would we be better served to look at a standalone VPN box?

    Thanks for any enlightenment.
     
  2. SgtPepperKSU

    SgtPepperKSU Network Guru Member

    I don't see any reason why you'd have a problem with that number of connected clients. And, yes, it can be as if they were physically connected to the LAN.
     
  3. Disman_ca

    Disman_ca Super Moderator Staff Member Member

    If you are on a very limited budget then this would work okay. As you already said, it is most likely not going to be very good with multiple VPN/client connections. If people begin to move large files back and forth over the tunnel then you will definatley hear about degradation in performance. I would suggest you look into a dedicated VPN box but a WRT54GL could certainly work as a proof of concept
     
  4. cavenewt

    cavenewt Addicted to LI Member

    Expand on your answers?

    Hokay, I've got two answers that contradict each other. Can someone please elaborate on the capacity of a VPN tunnel set up this way? Especially from someone who has real-life experience?

    Most of the traffic would not be large--it's a newspaper, people want to be able to edit stories from home. InCopy documents. Some photo transferring, but if volume is a problem, I can fall back on FTP for that.

    Thank you.
     
  5. SgtPepperKSU

    SgtPepperKSU Network Guru Member

    I think that's because we were answering two different questions. :smile:

    It can handle more than one client connected to it.

    However, the processor on these routers is really quite limited, so performance/throughput probably won't be very good.

    I've had up to three clients connected at the same time, but never trying to send much data over all of them simultaneously, so I can't say what kind of performance that would give.

    So, if access is the primary concern - you should be okay. If performance is really anything other than an afterthought, you'd probably be better off with another solution.
     
  6. cavenewt

    cavenewt Addicted to LI Member

    SgtPepperKSU: thanks for that! It helps a lot.
     
  7. occamsrazor

    occamsrazor Network Guru Member

Share This Page