<div dir="ltr"><br><br><div class="gmail_quote">On Sun, Jul 3, 2011 at 7:40 AM, geoffrey mendelson <span dir="ltr"><<a href="mailto:geoffreymendelson@gmail.com">geoffreymendelson@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div class="im"><br>
On Jul 3, 2011, at 6:11 AM, Arie Skliarouk wrote:<br>
<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Hi,<br>
<br>
The company I work at uses openvpn extensively. We settled on UDP-based protocol as it is more effective than TCP based.<br>
<br>
Inter-Israeli VPN connection works perfectly all of the time, whereas international VPN has erratic behavior on at least one ISP. I suspect the ISP (XFone 018) dropping UDP packets occasionally during peak hours for following reasons:<br>
• ICMP ping to the internet-facing IP number of the VPN router works properly all of the time<br>
• over-VPN ping to some server has about 50% packet loss during peak hour (tested at 23:00)<br>
• on different ISP at the same time there was no packet loss<br>
• over-VPN ping on the same ISP worked perfectly in the morning hours<br></blockquote></div></blockquote><div><br>I would complain and show proof of lost traffic (traffic sent but not received) - Wireshark screenshots seems to do the trick. Ask them to have your specific port prioritized. If you're a good paying customer (non-dsl/cable), there's a good chance they could do something.<br>
<br>If you want, prior to calling them, to combat them with their own weapon, thankfully there's a UDP protocol that probably no ISP would want to degrade; Try switching to port 53 :-)<br><br></div><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<div class="im"><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
</blockquote>Perfectly legal. I think your choice of UDP over TCP is ill-advised, and requires more research into the differences between the protocols, their uses and goals.<br></div>
<br></blockquote><div><br>There's a very good reason of using UDP and not TCP for tunneling. <a href="http://sites.inka.de/bigred/devel/tcp-tcp.html">http://sites.inka.de/bigred/devel/tcp-tcp.html</a><br><br>HTH,<br>
<br>-- Shimi<br></div></div></div>