• Kiếm tiền với Hostinger

    Kiếm Tiền Cùng Hostinger

    Bạn đang tìm kiếm cách kiếm thêm thu nhập online? Hãy tham gia ngay chương trình Affiliate của Hostinger! Với mỗi khách hàng đăng ký thông qua liên kết của bạn, bạn sẽ nhận được khoản hoa hồng hấp dẫn.

    Hostinger cung cấp các dịch vụ lưu trữ web (hosting) chất lượng cao với mức giá cạnh tranh, giúp bạn dễ dàng giới thiệu và thu hút người dùng.

    Đừng bỏ lỡ cơ hội tuyệt vời này để tăng thêm thu nhập thụ động.

    Tham Gia Ngay

MikroTik VPN Comparison – RFC

TigerDao

Administrator
Thành viên BQT





This is a comparison of the major MikroTik tunneling protocols. The values in the table below reflect the way that Mikrotik can handle these tunnels as opposed to how the tunnels might behave when in strict accordance with their respective standards. For example, as per the published standard L2TP is not an encrypted tunnel, but when used between two MikroTik routers the L2TP tunnel can use the same encryption as PPtP.



TunnelIntroduced
Authentication

Layer

PortPort can be
changed
Default
MTU
Authentication
Protocols
Encryption
Protocols
Encryption
Level
Clients can
call home
Bridging or BCP
Supported
GREOct 19943N/ANo1476N/AN/ANoneNoNo
IPIPOct 19963N/ANo1480N/AN/ANoneNoNo
VLAN19982N/ANo1500N/AN/ANoneN/AYes
IPSECNov 19983UDP 500YesN/ANone
MD5
SHA1
SHA256
SHA512
None
DES, 3DES, AES,
Blowfish, Twofish,
Camellia
None, 64bits, 128bit,
192bit, 256bit
YesNo
PPPoEFeb 19992N/AN/A1480PAP
CHAP
MSCHAP v1
MSCHAP v2
None
MPPE 40bit
MPPE 128bit
None or
40bit or 128bit
N/AYes
PPtPJuly 19993TCP 1723No1450PAP
CHAP
MSCHAP v1
MSCHAP v2
None
MPPE 40bit
MPPE 128bit
None or
40bit or 128bit
YesYes
L2TPAug 19993UDP 1701No1450PAP
CHAP
MSCHAP v1
MSCHAP v2
None
MPPE 40bit
MPPE 128bit
None or
40bit or 128bit
YesYes
OVPNMay 20013TCP 1194Yes1500None
MD5
SHA1
None
Blowfish 128
AES 128
AES 192
AES 256
None
128bit, 192bit, or
256bit
YesYes
EOIPSept 20023N/ANo1458N/AN/ANoneNoYes
SSTPJan 20073TCP 443Yes1500PAP
CHAP
MSCHAP v1
MSCHAP v2
TLS 1.0
None
MPPE 40bit
MPPE 128bit
TLS 1.0
None or
40bit or 128bit
or 256bit
YesYes



All tunnels have an affect upon throughput. In the table below, I’ll show how much throughput is lost per tunnel type. These tests were not conducted to see what the max throughput between the routers could have possibly have been, but rather to show the loss of throughput when traversing a tunnel. The tests were conducted between two 8 port CRS routers running ROS 6.27. Each of the tunnels was using its highest encryption method. Your results will probably vary a little but the % of loss should be somewhat similar. A lower encryption standard should give more favorable results, but that won’t always be true.

Update 9-19-2018: ROS has made many improvements and these test results are not accurate anymore. Fast Track and other features can produce much higher throughput values then what was true in ROS 6.27. To test your tunnel, first do a bandwidth test between the IPs that are being used to connect the tunnel. Frequently, this will be the public IP address of the two routers. Then test between the IP addresses used on the tunnel to compare the results.

TunnelInitial
Bandwidth
With Tunnel% of Loss
GRE691M RX195M RX71.80%
IPIP691M RX204M RX70.50%
VLAN691M RX582M RX15.80%
IPSEC691M RX667M RX3.50%
PPPoE691M RX94M RX86.40%
PPtP691M RX61M RX91.20%
L2TP691M RX59M RX91.50%
OVPN691M RX29M RX95.90%
EOIP691M RX190M RX72.50%
SSTP691M RX29M RX95.80%



MikroTik Manual Pages

PPP

PPTP

PPPoE

L2TP

SSTP

OVPN

IPIP

GRE

EOIP

VLAN

IPSEC



Authentication/ Encryption Protocols

PAP

CHAP

MSCHAP v1&2

DES

3DES

TLS

MD5

SHA1

MPPE

Blowfish 128

Twofish

AES



Like this:​


Like Loading…


Related





Xem tiếp...
 
Top