[177514] in North American Network Operators' Group
Re: scaling linux-based router hardware recommendations
daemon@ATHENA.MIT.EDU (Mehmet Akcin)
Mon Jan 26 19:07:06 2015
X-Original-To: nanog@nanog.org
From: Mehmet Akcin <mehmet@akcin.net>
In-Reply-To: <87vbjt6tml.fsf@muck.riseup.net>
Date: Mon, 26 Jan 2015 22:06:53 -0200
To: micah anderson <micah@riseup.net>
Cc: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org
Cumulus Networks has some stuff,
http://www.bigswitch.com/sites/default/files/presentations/onug-baremetal-20=
14-final.pdf
Pretty decent presentation with more details you like.=20
Mehmet=20
> On Jan 26, 2015, at 8:53 PM, micah anderson <micah@riseup.net> wrote:
>=20
>=20
> Hi,
>=20
> I know that specially programmed ASICs on dedicated hardware like Cisco,
> Juniper, etc. are going to always outperform a general purpose server
> running gnu/linux, *bsd... but I find the idea of trying to use
> proprietary, NSA-backdoored devices difficult to accept, especially when
> I don't have the budget for it.
>=20
> I've noticed that even with a relatively modern system (supermicro with
> a 4 core 1265LV2 CPU, with a 9MB cache, Intel E1G44HTBLK Server
> adapters, and 16gig of ram, you still tend to get high percentage of
> time working on softirqs on all the CPUs when pps reaches somewhere
> around 60-70k, and the traffic approaching 600-900mbit/sec (during a
> DDoS, such hardware cannot typically cope).
>=20
> It seems like finding hardware more optimized for very high packet per
> second counts would be a good thing to do. I just have no idea what is
> out there that could meet these goals. I'm unsure if faster CPUs, or
> more CPUs is really the problem, or networking cards, or just plain old
> fashioned tuning.
>=20
> Any ideas or suggestions would be welcome!
> micah
>=20
