From owner-freebsd-ipfw@FreeBSD.ORG  Tue Mar 25 10:03:29 2008
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
Delivered-To: freebsd-ipfw@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 91FA41065671;
	Tue, 25 Mar 2008 10:03:29 +0000 (UTC)
	(envelope-from rwatson@FreeBSD.org)
Received: from cyrus.watson.org (cyrus.watson.org [209.31.154.42])
	by mx1.freebsd.org (Postfix) with ESMTP id 5AAC98FC1F;
	Tue, 25 Mar 2008 10:03:29 +0000 (UTC)
	(envelope-from rwatson@FreeBSD.org)
Received: from fledge.watson.org (fledge.watson.org [209.31.154.41])
	by cyrus.watson.org (Postfix) with ESMTP id 0130046C1B;
	Tue, 25 Mar 2008 05:45:42 -0400 (EDT)
Date: Tue, 25 Mar 2008 09:45:41 +0000 (GMT)
From: Robert Watson <rwatson@FreeBSD.org>
X-X-Sender: robert@fledge.watson.org
To: Sepherosa Ziehau <sepherosa@gmail.com>
In-Reply-To: <ea7b9c170803250203l6e3769ablcba65df6c1f5a4b6@mail.gmail.com>
Message-ID: <20080325094400.I6905@fledge.watson.org>
References: <slrnfud9lu.1rus.vadim_nuclight@hostel.avtf.net>
	<47E79636.1000909@FreeBSD.org> <47E7EAA8.7020101@elischer.org>
	<ea7b9c170803250203l6e3769ablcba65df6c1f5a4b6@mail.gmail.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
Cc: vadim_nuclight@mail.ru, freebsd-ipfw@freebsd.org,
	Julian Elischer <julian@elischer.org>,
	freebsd-hackers@freebsd.org, araujo@freebsd.org
Subject: Re: [HEADS UP!] IPFW Ideas: possible SoC 2008 candidate
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 25 Mar 2008 10:03:29 -0000


On Tue, 25 Mar 2008, Sepherosa Ziehau wrote:

> On Tue, Mar 25, 2008 at 1:53 AM, Julian Elischer <julian@elischer.org> wrote:
>>  3/ possibly keeping per CPU stats..
>
> This probably is the trickest part, not difficult for non-fastforward case. 
> But if fastforward is enabled, I could only imagine full cross-cpu states 
> duplication.

FWIW, there is decreasing difference between IP fast forwarding and regular IP 
processing in FreeBSD 7.x, as we perform direct dispatch by default, so it's 
not just the fast forward case where full input parallelism is possible for 
the firewall, and parallel firewall processing has occurred for output since 
5.3.

Robert N M Watson
Computer Laboratory
University of Cambridge