Re: Best hardware platform for routing/firewalling?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Fri, 2009-01-30 at 12:43 +0100, Tore Anderson wrote:
> Hey list,
> 
> does anyone have an opinion on what's the better-performing/suited
> hardware platform for routing and stateful firewalling with iptables;
> AMD Opteron or Intel Xeon?  I'm need something that can sustain high
> pps/bps numbers with as low latency as possible.

Harald gave a talk about that 2 years ago, maybe it's still
somewhat applicable:

http://www.heinlein-support.de/upload/slac/network_performance.pdf

Also you might want to contact the guys from the Bifrost
distribution:

http://bifrost.slu.se/index.en.html

They seem to be testing for this sort of performance regularly,
and I've gotten hold of some of there stats last year thanks
to the help of a friendly Dane:

http://robur.slu.se/Linux/net-development/experiments/2008/080623.tyan2927

I've also done some rather unscientific tests myself and apart from best
sticking with the two onboard PCIe Gigabit NICs (Intel, Broadcom) of
quality server boards and getting the best main memory performance
you can get hold of, the main thing seems to be L2/L3 cache size,
so in my tests Intels current CPU line slightly outperformed
current Opterons last summer, but traditionally most people advised
the use of Opterons because of there better SMP memory performance.

But I was only interested in 1GiE-NICs tied to one CPU core each
at the time, so this might be meaningless in a multiqueue scenario
with 10GiE NICs.


--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html

[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux