Router

手持ちルータに関するメモ帳

使ってる機器

Maker	Name	Memo
NEC	IX2215
NEC	IX2105
NEC	IX2025
NEC	IX2015
IIJ	SEIL x86
NTT	N500	YAMAHA NVR500 OEM

ベンチ計測

ルーティング速度

hostA - IX2105-A - IX2105-B - hostB (公称 1Gbps)

------------------------------------------------------------
Client connecting to 10.0.3.11, TCP port 5001
TCP window size:  256 KByte (WARNING: requested  128 KByte)
------------------------------------------------------------
[  3] local 192.168.11.22 port 44160 connected with 10.0.3.11 port 5001
[ ID] Interval       Transfer     Bandwidth
[  3]  0.0- 1.0 sec  64.8 MBytes   543 Mbits/sec
[  3]  1.0- 2.0 sec  69.2 MBytes   581 Mbits/sec
[  3]  2.0- 3.0 sec  79.2 MBytes   665 Mbits/sec
[  3]  3.0- 4.0 sec  99.2 MBytes   833 Mbits/sec
[  3]  4.0- 5.0 sec  97.2 MBytes   816 Mbits/sec
[  3]  5.0- 6.0 sec  99.0 MBytes   830 Mbits/sec
[  3]  6.0- 7.0 sec  99.8 MBytes   837 Mbits/sec
[  3]  7.0- 8.0 sec  96.1 MBytes   806 Mbits/sec
[  3]  8.0- 9.0 sec  99.0 MBytes   830 Mbits/sec
[  3]  9.0-10.0 sec  99.0 MBytes   830 Mbits/sec
[  3]  0.0-10.0 sec   903 MBytes   757 Mbits/sec

hostA - IX2105-A - IX2025-A - hostB (公称 100Mbps)

hostC - IX2215-A - IX2215-B - hostD (公称 2Gbps)
※速度出てない気が…、別途追試の予定

------------------------------------------------------------
Client connecting to 10.0.6.10, TCP port 5001
TCP window size:  256 KByte (WARNING: requested  128 KByte)
------------------------------------------------------------
[  3] local 192.168.11.22 port 53498 connected with 10.0.6.10 port 5001
[ ID] Interval       Transfer     Bandwidth
[  3]  0.0- 1.0 sec  89.0 MBytes   747 Mbits/sec
[  3]  1.0- 2.0 sec  93.6 MBytes   785 Mbits/sec
[  3]  2.0- 3.0 sec  91.8 MBytes   770 Mbits/sec
[  3]  3.0- 4.0 sec  91.2 MBytes   765 Mbits/sec
[  3]  4.0- 5.0 sec  94.0 MBytes   789 Mbits/sec
[  3]  5.0- 6.0 sec  95.2 MBytes   799 Mbits/sec
[  3]  6.0- 7.0 sec  93.8 MBytes   786 Mbits/sec
[  3]  7.0- 8.0 sec  92.4 MBytes   775 Mbits/sec
[  3]  8.0- 9.0 sec  92.6 MBytes   777 Mbits/sec
[  3]  9.0-10.0 sec  91.9 MBytes   771 Mbits/sec
[  3]  0.0-10.0 sec   926 MBytes   776 Mbits/sec

ルーティング速度 (IPsec使用時 IKEv2)

hostA - IX2105-A -(IPsec)- IX2105-B - hostB (公称 400Mbps)

------------------------------------------------------------
Client connecting to 10.0.3.11, TCP port 5001
TCP window size:  256 KByte (WARNING: requested  128 KByte)
------------------------------------------------------------
[  3] local 192.168.11.22 port 44124 connected with 10.0.3.11 port 5001
[ ID] Interval       Transfer     Bandwidth
[  3]  0.0- 1.0 sec  50.0 MBytes   419 Mbits/sec
[  3]  1.0- 2.0 sec  49.6 MBytes   416 Mbits/sec
[  3]  2.0- 3.0 sec  51.4 MBytes   431 Mbits/sec
[  3]  3.0- 4.0 sec  49.6 MBytes   416 Mbits/sec
[  3]  4.0- 5.0 sec  50.8 MBytes   426 Mbits/sec
[  3]  5.0- 6.0 sec  51.5 MBytes   432 Mbits/sec
[  3]  6.0- 7.0 sec  51.0 MBytes   428 Mbits/sec
[  3]  7.0- 8.0 sec  51.8 MBytes   434 Mbits/sec
[  3]  8.0- 9.0 sec  51.4 MBytes   431 Mbits/sec
[  3]  9.0-10.0 sec  50.2 MBytes   422 Mbits/sec
[  3]  0.0-10.0 sec   507 MBytes   425 Mbits/sec

hostA - IX2105-A -(IPsec)- IX2025-B - hostB (公称 100Mbps)

hostC - IX2215-A -(IPsec)- IX2215-B - hostD (公称 1Gbps)

------------------------------------------------------------
Client connecting to 10.0.6.10, TCP port 5001
TCP window size:  256 KByte (WARNING: requested  128 KByte)
------------------------------------------------------------
[  3] local 192.168.11.22 port 53486 connected with 10.0.6.10 port 5001
[ ID] Interval       Transfer     Bandwidth
[  3]  0.0- 1.0 sec  87.5 MBytes   734 Mbits/sec
[  3]  1.0- 2.0 sec  88.2 MBytes   740 Mbits/sec
[  3]  2.0- 3.0 sec  88.9 MBytes   746 Mbits/sec
[  3]  3.0- 4.0 sec  86.9 MBytes   729 Mbits/sec
[  3]  4.0- 5.0 sec  85.0 MBytes   713 Mbits/sec
[  3]  5.0- 6.0 sec  89.6 MBytes   752 Mbits/sec
[  3]  6.0- 7.0 sec  91.8 MBytes   770 Mbits/sec
[  3]  7.0- 8.0 sec  92.1 MBytes   773 Mbits/sec
[  3]  8.0- 9.0 sec  90.6 MBytes   760 Mbits/sec
[  3]  9.0-10.0 sec  88.5 MBytes   742 Mbits/sec
[  3]  0.0-10.0 sec   889 MBytes   746 Mbits/sec

hostA - IX2105-A -(ipv6 IPsec)- IX2105-B - hostB

------------------------------------------------------------
Client connecting to 10.0.4.11, TCP port 5001
TCP window size:  256 KByte (WARNING: requested  128 KByte)
------------------------------------------------------------
[  3] local 192.168.11.22 port 46096 connected with 10.0.4.11 port 5001
[ ID] Interval       Transfer     Bandwidth
[  3]  0.0- 1.0 sec  17.5 MBytes   147 Mbits/sec
[  3]  1.0- 2.0 sec  17.6 MBytes   148 Mbits/sec
[  3]  2.0- 3.0 sec  18.2 MBytes   153 Mbits/sec
[  3]  3.0- 4.0 sec  18.0 MBytes   151 Mbits/sec
[  3]  4.0- 5.0 sec  18.9 MBytes   158 Mbits/sec
[  3]  5.0- 6.0 sec  18.0 MBytes   151 Mbits/sec
[  3]  6.0- 7.0 sec  17.1 MBytes   144 Mbits/sec
[  3]  7.0- 8.0 sec  17.4 MBytes   146 Mbits/sec
[  3]  8.0- 9.0 sec  18.4 MBytes   154 Mbits/sec
[  3]  9.0-10.0 sec  17.9 MBytes   150 Mbits/sec
[  3]  0.0-10.0 sec   179 MBytes   150 Mbits/sec

上記コンフィグ設定
IX2105-A

ip ufs-cache enable

ip route 10.0.0.0/24 Tunnel0.0
ip route 10.0.1.0/24 Tunnel1.0
ip route 10.0.2.0/24 Tunnel2.0
ip route 10.0.3.0/24 Tunnel3.0
ip route 10.0.4.0/24 Tunnel4.0


ikev2 authentication psk id keyid ix-A key char himitsukagi1
ikev2 authentication psk id keyid ix-B key char himitsukagi2
ikev2 authentication psk id keyid ix-C key char himitsukagi3
ikev2 authentication psk id keyid ix-D key char himitsukagi4
ikev2 authentication psk id keyid ix-E key char himitsukagi5
ikev2 authentication psk id keyid ix-F key char himitsukagi6


ikev2 default-profile
local-authentication psk id keyid ix-A
exit

ikev2 profile profile-B
local-authentication psk id keyid ix-A
exit

ikev2 profile profile-C
local-authentication psk id keyid ix-A
exit

ikev2 profile profile-D
local-authentication psk id keyid ix-A
exit

ikev2 profile profile-E
local-authentication psk id keyid ix-A
exit

ikev2 profile profile-F
local-authentication psk id keyid ix-A
exit


interface Tunnel0.0
tunnel mode ipsec-ikev2
ip unnumbered GigaEthernet1.0
ip tcp adjust-mss auto
ikev2 binding profile-B
ikev2 outgoing-interface GigaEthernet0.0
ikev2 peer 192.168.31.1 authentication psk id keyid ix-B
no shutdown

interface Tunnel1.0
tunnel mode ipsec-ikev2
ip unnumbered GigaEthernet1.0
ip tcp adjust-mss auto
ikev2 binding profile-C
ikev2 outgoing-interface GigaEthernet0.0
ikev2 peer 192.168.31.2 authentication psk id keyid ix-C
no shutdown

interface Tunnel2.0
tunnel mode ipsec-ikev2
ip unnumbered GigaEthernet1.0
ip tcp adjust-mss auto
ikev2 binding profile-D
ikev2 outgoing-interface GigaEthernet0.0
ikev2 peer 192.168.31.3 authentication psk id keyid ix-D
no shutdown

interface Tunnel3.0
tunnel mode ipsec-ikev2
ip unnumbered GigaEthernet1.0
ip tcp adjust-mss auto
ikev2 binding profile-E
ikev2 outgoing-interface GigaEthernet0.0
ikev2 peer 192.168.31.4 authentication psk id keyid ix-E
no shutdown

interface Tunnel4.0
tunnel mode ipsec-ikev2
ip unnumbered GigaEthernet1.0
ip tcp adjust-mss auto
ikev2 binding profile-F
ikev2 outgoing-interface GigaEthernet0.0
ikev2 peer 192.168.31.5 authentication psk id keyid ix-F
no shutdown

IX2105-B

enable

logging subsystem all info

ip ufs-cache enable
ip route 192.168.11.0/24 Tunnel0.0


ikev2 authentication psk id keyid ix-A key char himitsukagi1
ikev2 authentication psk id keyid ix-B key char himitsukagi2
ikev2 authentication psk id keyid ix-C key char himitsukagi3
ikev2 authentication psk id keyid ix-D key char himitsukagi4
ikev2 authentication psk id keyid ix-E key char himitsukagi5
ikev2 authentication psk id keyid ix-F key char himitsukagi6


ikev2 default-profile
local-authentication psk id keyid ix-E
exit


interface Tunnel0.0
tunnel mode ipsec-ikev2
ip unnumbered GigaEthernet1.0
ip tcp adjust-mss auto
ikev2 outgoing-interface GigaEthernet0.0
ikev2 peer 192.168.31.6 authentication psk id keyid ix-A
no shutdown

手持ちルータに関するメモ帳

使ってる機器

ベンチ計測

ルーティング速度

ルーティング速度 (IPsec使用時 IKEv2)

メニュー

最新