1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

WRT54GS, VPN, and Multiple WRT54GS between distances

Discussion in 'Cisco/Linksys Wireless Routers' started by maxster, Jun 8, 2005.

  1. maxster

    maxster Network Guru Member

    Here is what I am planning -

    i. WRT54GS1 (AP mounted outdoor with Omni, VPN server, router) -> ADSL Modem -> Internet

    ii. WRT54GS2 (200 meter from WRT54GS1, Client Mode mounted outdoor with panel directional antenna) -> WRT54GS1

    iia. at location WRT54GS2 want to also allow wireless clients so connect ethernet from WRT54GS2 to a WAP54G

    I want to avoid WDS reapter mode because I may also connect more WRT54GS at longer distances and not sure if WDS is a good idea with like 4 WRT54GS all connected in reapter mode - what is the general design consideration with WDS with more than 2 repeater units?

    My questions are -

    1. I want to use an open network but want all computers to connect to the WRT54GS1 VPN in order to access the router for internet access. So is it possible with one of the firmware to allow internet access via VPN but not for regular clients?

    2. At location WRT54GS2 without WDS - to also allow wireless clients is adding another AP the only way?

    3. At WRT54GS2 I was thinking to minimize wiring (except power) to put the WAP54G outdoor also near the WRT54GS2 - because WRT54GS2's antenna is directional will the WAP54G have much interferance? How far apart so they be? Or is it better to run the CAT5 indoor and power the WRT54GS2 via WAPPOE?

    All outdoor units will of course be weatherproof. I understand the networking on the client end. But on the AP end not sure how to prevent clients from using the internet - and only allow if connected via VPN.


    Thanks.

    B.
     
  2. littlewhoo

    littlewhoo Network Guru Member

    But please keep in mind, that the WRT54GS has only a 200 MHz CPU and no hardware support for PPTP or IPSEC de/encryption (which both are CPU-hogs). When connecting more than two VPN clients to the WRT54GS's internal VPN server at the same time, you will run into severe performance problems.

    Edit: Just to give you an idea, how big the performance hit is:

    The following test is done with two computers, both connected to the LAN ports of a WRT54GS 1.1 running Alchemy 1.0.
    One of these computers is connected to the WRT54GS via VPN. The normal LAN IP address of this computer is 192.168.1.100 and the IP address of the VPN connection is 192.168.1.50. The other computer (IP 192.168.1.103) is not connected to the VPN server. The tests are done with Iperf http://dast.nlanr.net/Projects/Iperf/

    root@Slack:~# iperf -c 192.168.1.100
    ------------------------------------------------------------
    Client connecting to 192.168.1.100, TCP port 5001
    TCP window size: 16.0 KByte (default)
    ------------------------------------------------------------
    [ 5] local 192.168.1.103 port 1033 connected with 192.168.1.100 port 5001
    [ ID] Interval Transfer Bandwidth
    [ 5] 0.0-10.0 sec 113 MBytes 94.6 Mbits/sec

    root@Slack:~# iperf -c 192.168.1.50
    ------------------------------------------------------------
    Client connecting to 192.168.1.50, TCP port 5001
    TCP window size: 16.0 KByte (default)
    ------------------------------------------------------------
    [ 5] local 192.168.1.103 port 1034 connected with 192.168.1.50 port 5001
    [ ID] Interval Transfer Bandwidth
    [ 5] 0.0-10.1 sec 3.75 MBytes 3.11 Mbits/sec

    So the LAN speed is going down from 94.6 MBit/s without VPN to 3.11 MBit/s with VPN. And this is only with one VPN client connected to the VPN server! Now try to imagine, how big the performance hit is, if two or even more clients are connected to the VPN server.
     
  3. maxster

    maxster Network Guru Member

    VPN

    Wow! Didn't know it would affect it that much.

    I guess for the AP I need to look into the WRV54G.


    B.
     

Share This Page