RE: em0, polling performance, P4 2.8ghz FSB 800mhz
From: Don Bowman (don_at_sandvine.com)
Date: 02/29/04
- Previous message: Deepak Jain: "em0, polling performance, P4 2.8ghz FSB 800mhz"
- Maybe in reply to: Deepak Jain: "em0, polling performance, P4 2.8ghz FSB 800mhz"
- Next in thread: Deepak Jain: "Re: em0, polling performance, P4 2.8ghz FSB 800mhz"
- Reply: Deepak Jain: "Re: em0, polling performance, P4 2.8ghz FSB 800mhz"
- Reply: Deepak Jain: "Re: em0, polling performance, P4 2.8ghz FSB 800mhz"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
To: 'Deepak Jain' <deepak@ai.net>, freebsd-hackers@freebsd.org Date: Sat, 28 Feb 2004 21:19:18 -0500
> I have a machine running 4.9. P4 2.8Ghz, 800mhz bus, Intel PRO/1000
> ethernet connected to a Cisco, both sides are locked to 1000/FD.
>
> The kernel has HZ=1000, and DEVICE_POLLING, IPFW, DUMMYNET,
> etc. After
> only a few minutes of run time under an attack ~90,000 pps.
> The attack
> has been limited at the router to JUST incoming TCP port 80 inbound
> traffic. I don't know why the machine is having such a hard
> time under
> the load. The cpu shows it is >90% idle even under the worst of the
> attack. What am I doing wrong?
I think there's a problem with CPU time not getting properly
accounted for in device polling, so it may be busier than you think.
For this scenario, i would set net.inet.tcp.blackhole=2. You
might be spending a lot of time creating the ICMP unreachable
messages, rather than in the network driver (where device polling
would help).
--don
_______________________________________________
freebsd-hackers@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@freebsd.org"
- Previous message: Deepak Jain: "em0, polling performance, P4 2.8ghz FSB 800mhz"
- Maybe in reply to: Deepak Jain: "em0, polling performance, P4 2.8ghz FSB 800mhz"
- Next in thread: Deepak Jain: "Re: em0, polling performance, P4 2.8ghz FSB 800mhz"
- Reply: Deepak Jain: "Re: em0, polling performance, P4 2.8ghz FSB 800mhz"
- Reply: Deepak Jain: "Re: em0, polling performance, P4 2.8ghz FSB 800mhz"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
- Re: em0, polling performance, P4 2.8ghz FSB 800mhz
... >>only a few minutes of run time under an attack ~90,000 pps. ... >>has
been limited at the router to JUST incoming TCP port 80 inbound ... > accounted for
in device polling, so it may be busier than you think. ... I'd like to know more about
the CPU time idea. ... (freebsd-hackers) - Re: "denial of service" attacks
... > Could someone explain what it is in basic terminology? ... DoS attack,
as would repeatedly hitting it with an invalid requests (so as ... A certain webserver chews up
1 or 2 seconds of CPU time when presented with ... Do the above attack from many machines
at the same time. ... (comp.os.linux.networking) - RE: Logging Archival Solutions?
... A SIM Device like RSA solution will Collect all the data as fast as ... packet
is traveling from a Cisco router to a switch to a server. ... Cisco MARS has achieve
this by integrating into MS MOM solution. ... attack happening if detected rapidly. ...
(Security-Basics) - Re: Arp Spoofing with wireless networks
... have tried doing this style of attack with cisco and lucent cards in a linux ...
cisco. ... In our orgainisation we currently have a total ban on all wireless equipment
... network that includes even a small portion of wireless nets. ... (Security-Basics) - Re: em0, polling performance, P4 2.8ghz FSB 800mhz
... too many stray irq 7's; not logging any more ... >>only a few minutes
of run time under an attack ~90,000 pps. ... > accounted for in device polling,
so it may be busier than you think. ... (freebsd-hackers)
