Hello,

I would like to know the performance of IPSec tunnels using netbsd on a 
68k machine.

I use a Centris 650 with 12 megabytes of RAM and a custom 1.5.2 kernel 
with IPSec support. The machine has two network interfaces; one is the 
onboard AAUI, the other is a nubus card. On one interface, I connected 
an Airport Base Station to provide wireless connectivity with my iBook 
(using OS X). The other interface connects to the rest of my wired LAN, 
including my router to the internet. The Centris acts as a gateway, so 
my iBook can also access the internet.

Having seperated the wireless network from the wired network with these 
two seperate interfaces, I have setup an IPSec tunnel (encryption, no 
authentication) between my iBook and the Centris, thus protecting my 
wireless network. This works perfectly, except for one thing: speed.

When I do NOT use encryption, I get a transfer rate of about 350 
kilobyte per second, which is the normal wireless speed. When I turn 
the encryption on, the throughput decreases to 35 kilobyte per second! 
This is not very impressive, especially considering the fact that my 
internet connection has a troughput of 80 k/sec!

I have tried different encryption algorithms (3des, des, blowfish) but 
this does not effect the speed.

Does anyone have a similar setup and benchmarks to share? Any hints on 
how to improve this speed? I have the option of getting a Quadra 800 
but since it's only 8 mhz faster, I don't think this will bring me a 
much better performance.

Any help would be appreciated!

Regards,

-Martin