QoS for VPN connections in Toastman 1.28.7497

Discussion in 'Tomato Firmware' started by tonycpsu, Jan 3, 2013.

  1. tonycpsu

    tonycpsu LI Guru Member

    I'm running Tomato v1.28.7497 MIPSR2-Toastman-VLAN-RT K26 USB VPN. I have an OpenVPN server on and a client on It looks something like this:

         +----------+   |      Linksys E3000        |   +---------------+
         |  Client  |   | +--------+   +--------+   |   | Remote Server |
         |          |-->| | Server |-->| Client |-->|-->|               |
         | |   | ||   ||   |   |    |
         +----------+   | +--------+   +--------+   |   +---------------+
                        |                           |      
    I have it set up so I can connect from the client ( to the VPN server, and then through the second VPN tunnel from the VPN client ( to a proxy server running on the remote machine

    The problem is that the traffic seems very slow. I know I'm going through two hops, so I expect some slowness, but the CPU doesn't seem to go past more than 10-15%, so I don't think I'm CPU-bound. I was suspecting that it might have something to do with QoS.

    I have the default Toastman QoS rules enabled, plus one rule for the OpenVPN server's source port set to the "Remote" traffic class. Connections on that port show up properly in the QoS details screen, but the 10.4.0.x and 10.8.0.x connections show up as "unclassified." I understand that these are outside the WAN interface, but my questions are (a) what kind of traffic priority do these "unclassified" connections get when going out over the VPN tunnel, and (b) is it possible that QoS is the reason my connections are slow?
