At 03:52 PM 09/18/2000 -0700, Roisman, Dani wrote: >I can vouch for 96Mbit/s on a dual-fastE firewall. Our gigE firewall hasn't >yet seen enough traffic. The lmiting factor, however, has been >packet-per-second, not bits-per-second. Specifically, when we hit around >20,000 pps, the firewall started dropping packets, and the console didn't >work well. So for one of our applications that used small packets, we could >only get 20Mbit/s through. > >It was explained to me that this is a limitation of interrupts per second >that a P-II or P-III chip can handle, and that each packet inbound generated >a CPU interrupt for packet checksum calculation. I'm sure your "limiting factor" is the firewalling code rather than the interrupts per second. We have machines in the field with 110k pps on dual T3 lines. The interrupt overhead is a lmiting factor, but the OS overhead and the code is more of a factor than the hardware capabiltiies itself. Dennis > >I am using Tulip cards. I understand that 3com 3c9xx can do checksum >calculation on the NIC, and that Alteon GigE chipsets can do interrupt >colaescing, so you might to better with them. But I've never done >packet-per-second testing on either of those two. > >---- >Dani Roisman >droisman@station.sony.com > >> -----Original Message----- >> From: linux-net@ddx.a2000.nu [mailto:linux-net@ddx.a2000.nu] >> Sent: Sunday, September 17, 2000 8:42 AM >> To: linux-net@vger.kernel.org >> Subject: max mbits/sec using linux router (with firewall rules) >> >> >> can someone tell me what the max performance will be with an >> linux router? >> i will be using two gigabit adapters and i think it's best if >> i use a dual >> pci bus mainbord. >> >> does is matter what kind of cpu / memory i use ? >> so will p3-933 be faster than a p3xeon-500 with 2mb cache or >> (does cache >> matter?) (and what about a dual or quad cpu system?) >> and sdram vs rimm ? >> >> i will use the router mainly for firewall and accounting rules >> 1 gigabit link will be connected to a switch >> the other will be the internet link (colocated) >> >> or what are my options with dedicated routers? >> i don't need many options which i think all gigabit routers of cisco >> have... >> >> - >> : send the line "unsubscribe >> linux-net" in >> the body of a message to majordomo@vger.kernel.org >> >- >: send the line "unsubscribe linux-net" in >the body of a message to majordomo@vger.kernel.org > - : send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.kernel.org
