[an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive]
 
[an error occurred while processing this directive] [an error occurred while processing this directive]
Skåne Sjælland Linux User Group - http://www.sslug.dk Home   Subscribe   Mail Archive   Forum   Calendar   Search
MhonArc Date: [Date Prev] [Date Index] [Date Next]   Thread: [Date Prev] [Thread Index] [Date Next]   MhonArc
 

Re: [NETVAERK] Performance af iptables



Hej

> Er der nogen der har nogle perfomancetal på iptables.

Lidt...

> F.eks. hvor mange samtidige session-connections
> kan den klare (uanset pakketrafik-mængden) ?

Den kan klare mange. Jeg har sat maks til 64k, og det giver ikke
problemer. Jeg har cirka 220 klient maskiner på.

>> Hvor megen trafik (i Mbps) kan iptables på en given
> maskine klare, hvis man ønsker kun at tillade
> 
>    a) Udgående TCP-forbindelser generelt
>    b) Indgående TCP-forbindelser på et par porte
>       fra et par netværk.
>    c) Lidt NAT og lidt PAT.
>    d) blokerer alt andet.
> 
> Jeg ved det er løst specificeret, men hvad kan man vente ?
> Er 10Mbps, 100Mbps 1000Mbps eller ??

Jeg har 333 IPtables regler, 239 HTB sub-class' hver på 2 interfaces,
laver ingen nat, men noget pakke filtrering og match på MAC adresser.
P4 2,8 Ghz, HT og smp kerne. Et par enkelte Patch-O-Matic
patches, Intel GB netkort.

Den router i hvertfald nok. Under tests, med en lidt anden
konfiguration synes jeg at det var cirka 250.000 pakker i sekundet. Så
kan du selv gange ud med pakkestørrelsen.

Men den burde nu nok kunne route 1 Gbit.

Mvh. Jesper


 
Home   Subscribe   Mail Archive   Index   Calendar   Search

 
 
Questions about the web-pages to <www_admin>. Last modified 2005-08-10, 22:43 CEST [an error occurred while processing this directive]
This page is maintained by [an error occurred while processing this directive]MHonArc [an error occurred while processing this directive] # [an error occurred while processing this directive] *