![]() ![]() Modern general-purpose operating systems provide rich and flexible capabilities for processing packets at a low level in network monitoring programs, traffic generation, software switches, routers, firewalls and attack recognition systems. Separately, the comparative performance characteristics of netmap on 1 / 10Gbit / s channels, one / several processor cores, large and short packets, performance comparison with OS FreeBSD / Linux stacks are separately considered. Under the cat, the basic primitives of using the framework for developing applications related to processing packets at speeds of 14Mpps are considered, practical experience of using the netmap framework when developing a component of the DDOS protection system responsible for the 元 level is considered. The article contains key fragments of NETMAP author’s publications - Luigi Rizzo, discusses the architecture and key features of the internal implementation of the netmap framework, which encapsulates critical functions when working with the OS kernel and network card, providing userland with a simple and understandable API. Netmap uses well-known performance-enhancing techniques, such as mapping the network card buffers into memory, I / O batch processing, and using ring transmit and receive memory buffers corresponding to the hardware buffers in the network card, which allows generating and receiving traffic up to 14 million packets per second (which corresponds to the theoretical maximum for 10Gbit / s). The article is based on my report at Highload ++ 2012 and is intended for quick introduction to the convenient and very effective opensource framework, which is included in the HEAD / STABLE FreeBSD, called NETMAP and allows you to work with packages at speeds of 1-10Gbit / s without using specialized hardware in conventional * nix operating systems. In these conditions, the importance of high-performance processing of network flows. As a result, the code of most modern general-purpose operating systems has many overheads that are wasting resources. At the same time, the TCP / IP protocol stack was developed at a time when you could only dream about speeds of about 10Gbit / s. ![]() The capacity of communication channels is constantly increasing, if a couple of years ago a server with a 10Gbit / s channel was a privilege of only a few, now offers have appeared on the market that are available for small and medium-sized companies.
0 Comments
Leave a Reply. |