erebe
commented
1 month ago Hello,
Like that it is hard to tell. In my tests I hadn't such a difference between my raw bandwith and when using wstunnel. It is the CPU that would be the bottleneck either on your client or server. So you can check for that to see if it is the case.
but my guess is that as you are using mTLS and bypass the transparent TLS stripping, you are hitting the slow path of your fortinet/firewall and being throttled due to a middle box. If this is the case, there are not much you can do.
Do your fortinet appliance block traffic without mTLS ? Would you mind describing a bit more the security setup/context where you are using wstunnel ?
Yaya48
Describe the goal
Running wireguard behind wstunnel + traefik
Describe what does not work
I'm using wireguard + wstunnel + traefik in order to bypass pretty restrictive stormshield, the stormshield is set to do transparant SSL MITM and blocking pretty much every port. Although by using wstunnel/websocket with mtls i got it to work, only issues is i have 180mbps when not using it and it downgrade to 20mbps when using it is there anything i can do to increase it at least having 50-60mpbs ?
Describe your wstunnel setup
Server : traefik + wstunnel Client wireguard + wstunnel
Desktop (please complete the following information):