[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Speed issues with bridge firewall

Henning/Daniel, is there any plans to implement polling in 3.4? Or have a
patch for it?
Amir Seyavash Mesry 
[email protected] 
LSI Logic Corporation 
Raid Support Test Technician 
6145-D Northbelt Parkway 
Norcross, GA 30071 
NOTICE: This communication may contain privileged or other confidential
information. If you are not the intended recipient, or believe that you have
received this communication in error, please do not print, copy, retransmit,
disseminate, or otherwise use the information. Also, please indicate to the
sender that you have received this communication in error, and delete the
copy you received. Thank you.
-----Original Message-----
From: [email protected] [mailto:[email protected]] On Behalf Of
Henning Brauer
Sent: Monday, September 01, 2003 3:47 PM
To: [email protected]
Subject: Re: Speed issues with bridge firewall
On Mon, Sep 01, 2003 at 12:20:04PM -0500, Mathew Binkley wrote:
> The firewall box is a SuperMicro 1U box with ServerWorks GC-LE 
> chipset,
> dual 1.8 GHz Xeons, 1 GB RAM, 40 gig hard drive, and two gigabit NIC's 
> (one Intel, the other NatSemi 83820).  OpenBSD doesn't support SMP, so 
> only one of the processors is being used.
dmesg would help.
my bet is on the nge(4), tho. at GigE - esp. when you run jumbo frame 
- it is not very efficient. I'd be interested in figures with a second 
> Results:
>     No firewall:    939 Mbits/sec thoroughput
>     Firewall:       785 Mbits/sec thoroughput
that's already pretty impressive...
check systat vmstat while doing the tests. I bet the interrupt #s kill 
you. check especially which device causes how many.
Henning Brauer, BS Web Services, http://bsws.de
[email protected] - [email protected]
Unix is very simple, but it takes a genius to understand the simplicity.
(Dennis Ritchie)