Joined: 18 Mar 2014 Posts: 12834 Location: Netherlands
Posted: Tue Mar 28, 2017 14:58 Post subject:
DD wrt performs software NAT, this is CPU intensive so 450MB/s is max. The stock Netgear firmware has hardware NAT(CTF= cut through forwarding), this skips in part the firewall so it is less safe and you loose things like QOS, but it will get you close to 950MB/s.
DD wrt performs software NAT, this is CPU intensive so 450MB/s is max. The stock Netgear firmware has hardware NAT(CTF= cut through forwarding), this skips in part the firewall so it is less safe and you loose things like QOS, but it will get you close to 950MB/s.
If you want a router with DDWRT capabel of 950Mb/s you have to buy an Atheros based router like the Netgear R7800
Thank you for the quick response. If I understand correctly, I can disable NAT on the r7000 by running in router mode instead of gateway mode. Assuming I configure the static route correctly, would this make the r7000 capable of ~950 speed?
The whole point to my adding this router and flashing to dd-wrt is so that I can connect a VPN through the router for a whole home VPN setup. If I make the router a WAP, can I still connect the VPN?
Joined: 18 Mar 2014 Posts: 12834 Location: Netherlands
Posted: Tue Mar 28, 2017 16:03 Post subject:
Ok, I see what you want.
First, VPN (at least OpenVPN) is very CPU intensive, this router will max out at 60 MB/s for a VPN connection.
Regarding your question is a VPN client possible on a WAP, I am not sure I have never done it.
I am using VPN on my secondary router, but it is in gateway mode (with SPI disabled). I think it can be done, if your main router is at 192.168.1.1 and you have your WAP at 192.168.1.2 with its openVPN client then you set the gateway of your clients at 192.168.1.2 and it should be routed over you VPN.
Whoa, I've been told there would be an overhead hit for VPN, I never imagined it would max out at 60 mb though! I've been recommended to go with the r7800 to get the atheros chipset and the faster cpu. Do you know what the max will be with VPN running on that model unit?
I guess a better more open ended question would be, what router will give the fastest throughput with a VPN connected? Any idea?
Joined: 16 Nov 2015 Posts: 6407 Location: UK, London, just across the river..
Posted: Tue Mar 28, 2017 16:50 Post subject:
well, R7800 has dual core 1,7 Ghz CPU and so far is next to last to R9000 witch is the most powerful router so far...
with VPN it will go 300+ MBs but it depends from type of encryption and VPN location i guess...VPN is very CPU intensive especially with high level of encryption.... _________________ Atheros
TP-Link WR740Nv1 ---DD-WRT 55179 WAP
TP-Link WR1043NDv2 -DD-WRT 55303 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55460 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55460 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55363 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913