Closed raarts closed 8 years ago
I retitled this because it's already in our backlog sort of.
So yes, this is backlog.
Yes, I saw your posting on HN. Could not find an issue for it here, so created it. How much is 'significantly less'? Anyway, for my use case disabling encryption would also be useful, since all traffic is already encrypted. I saw a large drop in max traffic when comparing the plain network, and the ZT network, and in some cases the CPU usage is important.
First, a baseline with no ZT in the way:
Raw private network performance: 944mbits/sec Raw public network performance: 938mbits/sec (NYC3<>NYC3)
Then with standard ZT:
Encryption, compression, authentication: 510mbits/sec
Now let’s try selectively deactivating parts of ZT that are higher overhead:
Encryption, NO compression, authentication: 519mbits/sec NO encryption, NO compression, authentication: 605mbits/sec NO encryption, NO compression, NO authentication: 901mbits/sec
Most of the overhead is encryption/authentication. This is comparable to published numbers I’ve seen for OpenVPN and GRE+IPsec and isn’t surprising.
cut/pasted from an e-mail we sent to someone
That was between two Digital Ocean droplets in the same DO region. Their private networks are basically 1gig Ethernet and benchmark as such.
That was measured with iperf3
.
Note that turning off compression only gave us another 9mbits/sec, while turning off encryption/auth gave us hundreds. That actually surprised me. But LZ4 is very fast, and is very fast in the "can't compress" case.
This was done as of 1.1.12 -- see https://www.zerotier.com/community/topic/77/how-to-define-trusted-paths-for-internal-sdn-use-1-1-12
Hi Adam, I am using zerotier in openwrt to create a tunnel interface between two devices. I have configured the trusted path as well. without tunnel I am getting 900 mbs/sec with tunnel I am getting only 50 mbs/sec( checked using iperf). Any help is very much appreciated.
Hi Adam, I am using zerotier in openwrt to create a tunnel interface between two devices. I have configured the trusted path as well. without tunnel I am getting 900 mbs/sec with tunnel I am getting only 50 mbs/sec( checked using iperf). Any help is very much appreciated.
I think you could experience decreased performance if you device is limited in resources (especially cpu). Because it's a Software Defined Network.
Hello @adamierymenko, https://www.zerotier.com/community/topic/77/how-to-define-trusted-paths-for-internal-sdn-use-1-1-12 this link seems to be dead, could you provide this guide please?
@crzsotona: Here it is: https://www.zerotier.com/manual/#2_1_4
@crzsotona: Here it is: https://www.zerotier.com/manual/#2_1_4
This link can’t work now…😖
The new link to describe trusted paths is https://docs.zerotier.com/config/#local-configuration-options
There are various use cases. Some providers offer unlimited bandwidth, some don't. Also, possibly (VoIP is my work area) the data is already compressed, and using up CPU for no reason is costly. Using a command line parameter would be fine. Interface granularity would not be needed.