[Oisf-users] suricata 3.2.0 for 10Gb performance
erik clark
philosnef at gmail.com
Wed Feb 15 15:07:11 UTC 2017
Ok, so word back from RH is that hashing is not likely to be in RHEL
anytime soon. They mentioned this as a possible alternative:
ethtool -K <ingress nic> rxhash off
They mentioned that there would be a performance penalty as the kernel will
compute hashes for each skb on ingress, bit it is unlikely to be that
noticeable.
IMO, I think specifying a symmetric hash with -X might be preferential to
turning rxhash off entirely, when dealing with af_packet in rhel7.
Suggestions?
On Mon, Jan 30, 2017 at 5:11 PM, Michał Purzyński <
michalpurzynski1 at gmail.com> wrote:
> http://git.kernel.org/cgit/linux/kernel/git/davem/net-next.git/commit/?id=
> eb70db8756717b90c01ccc765fdefc4dd969fc74
>
> The whole thread is here - https://bro-tracker.
> atlassian.net/browse/BIT-1575
>
>
> On Mon, Jan 30, 2017 at 4:48 AM, erik clark <philosnef at gmail.com> wrote:
>
>> What commit was that Michal? I am being asked which it is.
>>
>> On Thu, Jan 26, 2017 at 11:31 AM, Michał Purzyński <
>> michalpurzynski1 at gmail.com> wrote:
>>
>>> How about fixing the hash calculations, a patch that went upstream in
>>> the late 4.4
>>>
>>> > On Jan 26, 2017, at 7:35 AM, erik clark <philosnef at gmail.com> wrote:
>>> >
>>> > Cooper, just to followup. RedHat has confirmed that tpacket_v3 commits
>>> are in the 3.10 branch of RHEL7. They report it as being better supported
>>> in the 4 kernel line, but it is indeed supported though. If you are aware
>>> of specific commits for tpacket that you would like to see, pass them on
>>> and we can get them into 7.4 probably.
>>> > _______________________________________________
>>> > Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
>>> > Site: http://suricata-ids.org | Support:
>>> http://suricata-ids.org/support/
>>> > List: https://lists.openinfosecfoundation.org/mailman/listinfo/ois
>>> f-users
>>>
>>
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20170215/e2899248/attachment.html>
More information about the Oisf-users
mailing list