podivne zpomaleni provozu s firewallem PF
Jan Stary
hans at stare.cz
Wed Nov 21 09:27:48 CET 2007
On Nov 20 23:49:02, Miroslav Lachman wrote:
> Pokud vypnu PF (pfctl -d), tak k tomu nedochazi a vse jede od zacatku az
> do konce plynule. Rozdil v benchmarku se zapnutym a vypnutym PF je
> znacny = 90 req/s vs. 160 req/s
Ze kdy pochazi tenhle PF (tj. ten port z OpenBSD na FreeBSD)?
Napriklad v OpenBSD 4.2 ma byt cely network stack, vcetne PF,
o mnoho rychlejsi ( http://openbsd.org/42.html#new ):
In pf, store routing table ID, queue ID etc directly in
the packet header mbuf instead of using mbuf tags (which
use malloc'd memory). This yields a 100% improvement in
pf performance.
Nedavno se to resilo na misc at openbsd.org
H.
More information about the Users-l
mailing list