Does it beat IPsec? Any reason why I should switch to using WireGuard? thanks
my vpn is using wireguard as an excuse to charge extra - fuk dat.
I’ve found Wireguard to be quite good under two criteria for me:
- The latency is low, lower than OpenVPN (I’ve not used IPsec).
- The bandwidth is very high, able to get almost to the peak of my connection raw.
So I have 1200Mb/s download and 100Mb/s upload (DOCSIS Cable). And here is my speedtest result via Wireguard to a commercial VPN provider: Speedtest by Ookla - The Global Broadband Speed Test
And as you can see I’m getting 1102.97Mb/s download and 96.02Mb/s upload.
So download wise I’m getting 91% of my raw download speed.
The only downside to Wireguard in my opinion is the CPU usage is much higher than for instance OpenVPN because I cannot accelerate the chacha20-poly1305 encryption it uses with my CPU’s AES-NI fixed-function accelerator like I can with OpenVPN.
So to achieve that speed I presented above it does need 3 CPU cores at 100% load.
I run Wireguard from my home router which is a powerful computer running OPNsense so your mileage may vary based on what client you’re using and where you’re using it.
big tinfoil folks dont use ipsec due to it potentially being compromised.
i dont know if wireguard can beat ipsec but i switched from openvpn to wireguard recently and found the speeds to be significantly better, one really nice thing that is overlooked but affects most people is that wireguard’s implementation of replay protection is an incremental counter rather than being time based.
what this means in practice is that you dont drop nearly as many packets when you are running hot / using a lot of bandwidth.
My VPN is exclusively Wireguard (with an extra encryption layer to obfuscate Wireguard which by default is easily identifiable) and it works fantastic.
Sounds like a crappy provider.
Are you using Asus by chance
For some reason mine doesn’t work when I switch to WireGuard. Dropped packets and total network block all together. Two diff spots now.
I am not nope. My router is one I built myself and then the operating system is OPNsense which runs Wireguard natively as an application.
My router looks more like a normal PC than a typical router 
Try using a different VPN provider.
Digging more into this. Not all WireGuard are created equal. Especially on VPN provider apps.
Thanks for the info!
Yeah maybe later bc I have a 3 yr subscription rn.
I always advise people to not buy 3 year subscriptions for these types of reasons. You could always contact them and ask for help. As a VPN service business owner myself, I always am just an email away from my users. Maybe your provider is as well.