> >Are you using NAPI? > > > >What is the CPU utilization when packets start being dropped? > > > >I route full GE worth of traffic on a low-end machine without a > >problem. gigabit in, gigabit out. avg frame size 500 bytes. pretty much stock kernel, p4/3.0 Keep in mind: * linux routing performance (with NAPI and assuming the bus's are not being overloaded) is not based on number of megabits. it is a function of number of packets per second and flows per second. If I can route a full GE of sane traffic, unfortunately, it doesn't mean I can route a full GE of ddos traffic (random src/dst)... -alex - : send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
