I setup an HUB with cascade connections to multiple remote locations.
This allows me to manage all access from one place; wonderful.
Unfortunately, each cascade connection appears to be very overhead chatty (even with no intended traffic to the remote site) and eats up significant WAN bandwidth. I have tried multiple access control and filtering methods to remove broadcasts as well as limit cascade TCP connections to 1 or 2 but each cascade connection still generates significant overhead. Chatty as defined to be about 2-3Gig a month.
So, assuming no great ideas from you smart people on filtering methods....
Please consider adding an "on demand" cascade connections. The demand could potentially be identified by VLAN ID, remote Site IP subnet, other? One could consider it as well for the VPN client.
deep thoughts....
On Demand Connections for Cascade Client?
-
thisjun
- Posts: 2458
- Joined: Mon Feb 24, 2014 11:03 am
Re: On Demand Connections for Cascade Client?
If each cascade site doesn't need communication each other, please try "Privacy Filter Mode policy" in security policy.
http://www.softether.org/4-docs/1-manua ... y_Policies
http://www.softether.org/4-docs/1-manua ... y_Policies