What’s a reply attack? Do you have people activity MITM-ing your connection? Personally I’ve found Wireguard performance to be significantly better, especially on spotty mobile Internet
Comment on UK households could face VPN 'ban' after use skyrockets following Online Safety Bill
jabjoe@feddit.uk 1 day agoTo be honest, I’ve found WireGuard’s performance is harmed more by reply attacks than OpenVPN. Least that is what I put it down to when I tried them both from a VPN provider that offered both.
xthexder@l.sw0.com 1 day ago
jabjoe@feddit.uk 1 day ago
Man in the middle can be part of it. It’s just basically recording and sending stuff back. Generally I use WireGuard, but on unhygienic networks, were OpenVPN is warning about possible replay attacks, WireGuard doesn’t work as well. Could be something else of course, but I’ve got one end. It’s not constant or always.
xthexder@l.sw0.com 1 day ago
Oh replay attacks, that makes a bit more sense. Honestly I’ve never been on such a poor network to run into that. I don’t know your situation, but I’d be doing anything I could to get away from that ISP if they’re actively manipulating your traffic
jabjoe@feddit.uk 1 day ago
Ah, I see it. Sorry. Corrected.
It’s not really an issue with OpenVPN as it seams to cope. It’s the only time I use OpenVPN instead of WireGuard.
derpgon@programming.dev 1 day ago
How is WG vulnerable to replay attacks? They already address that in their documentation.
jabjoe@feddit.uk 1 day ago
It’s doesn’t fall over, it just slows down. Or appears to much more than OpenVPN. There could be something else going on, but for what ever the problem was, OpenVPN was coping better and just spitting out errors about a possible replay attack and continuing like nothing was wrong. I’ve not looked again as OpenVPN is working fine. For everything else, I’m using WireGuard.