Hi
@RMerlin - many thanks for the amazing firmware you've been working on over the years.
I can report similar behavior when using CIDR rules in VPN Director, however, at least in my case, I only notice it with an RT-AX58U. An RT-AX88U Pro with the same VPN Director configuration works as expected.
The RT-AX58U is connected to a 1Gbit/.5Gbit PPPoE fiber (MTU is 1492). Speedtests to the ISP's Ookla server report 700Mbit/300Mbit with CIDR rules in VPN Director and 950Mb/480Mbit with CIRD rules removed.
The RT-AX88U Pro is connected to a 1.5Gbit/1Gbit PPPoE fiber (MTU is 1492). Speedtests to the ISP's Ookla server report identical speeds with both CIDR rules in VPN Director and without - 1600Mbit/1060Mbit.
Site 1 subnet is 10.AA.0.0/24 - RT-AX88U Pro router
Site 2 subnet is 10.BB.0.0/24 - RT-AX58U router
Site 3 subnet is 10.CC.0.0/24 - RT-AX56U router (no WG client connections from this router).
VPN Director for Site 1:
<1>Site2>>10.BB.0.0/24>WGC1
<1>Client1>10.AA.0.252>>WGC1
<1>Client2>10.AA.0.251>>WGC1
<1>Site3>>10.CC.0.0/24>WGC2
VPN Director for Site 2:
<1>Site1>>10.AA.0.0/24>WGC1
<1>Client1>10.BB.0.113>>WGC1
<1>Client2>10.BB.0.114>>WGC1
<1>Client3>10.BB.0.116>>WGC1
<1>Site3>>10.CC.0.0/24>WGC2
Disabling the entries marked in
RED restores full thruput for Site 2.
Is it possible that the cache flow bypass developed by Broadcom is not applied on the older AX58U router or is it a WAD we just have to live with?
