On Mon, 2005-01-24 at 12:42, Patrick Higgins wrote: > Any suggestions? have you considered (or are you already using) better NICs? this is mostly hearsay gleaned from listening to the developers on various lists (netfilter-dev and openbsd-misc), but certain cards seem to be more "interrupt heavy" than others. the ones that seemed to get bashed the most are the broadcom cards, and the ones that seem to receive the most praise are the intel gigabit server adapters (i assume you are using gigE adapters regardless of the speed of your links, i further assume that these gigE cards are plugged into independent 64-bit PCI-X buses). also--if you're already using the intel gigE cards--are you using the less "free-as-in-speech" but less buggy and better performing driver from intel vs. the one that RH ships with their kernel? just a few thoughts outside the "we need more CPU" box...as i have never been under the impression that something like an in-kernel packet filter could benefit from multiple CPUs (other than the fact that you can bind all non-kernel processes to other CPU, for a minimal 10% or so performance gain). -j -- "If something is to hard to do, then it's not worth doing." --The Simpsons
