Le jeudi 20 mai 2010 à 18:21 +0530, Anand Raj Manickam a écrit : > Hi, > Is there any performance bench mark on conntrack response to 1 million > conntrack entries in the conntrack table. > Since conntrack uses Hashing to lookup the entries i had some doubts > on the scalability. Can someone shed some light please? Question is not about number of conntrack entries in hash table, but number of inserts and deletes per second. For persistent connections, if you use a hash table of one million slots, performance will be very good, since the chain length is small. Its scalable because each cpu can access conntrack table without locks, in parallel. The real problem comes from serialization of inserts/deletes on a central lock. Even with few entries (less than 50.000), this can be a problem because its not scalable. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
