On 27/04/18 14:31, Bobby Powers wrote: > Does that sound about right? Am I right in understanding that the > main difference between using a BPF classifier/action and XDP filter > is that performance of XDP filters is higher (because there is some > amount of integration with the NIC/driver), and they only process > ingress traffic? The higher performance of XDP is because the processing, being done in the driver, happens earlier in the RX path (thus avoiding the bulk of network stack processing for packets that e.g. are only going to be dropped anyway). But on TX, the analogous driver code would be the _last_ thing in the path, rather than the first, so in such a case the `tc` approach should probably perform better than an XDP analogue. Apart from that, your understanding appears to be correct. HTH, -Ed
|