Date: Sun, 31 May 1998 23:06:40 -0500 From: Tim Tsai <tim@futuresouth.com> To: net@FreeBSD.ORG Subject: router performance Message-ID: <19980531230640.52576@futuresouth.com>
next in thread | raw e-mail | index | archive | help
Can I expect a FreeBSD-based router (say, Pentium Pro 180 with 64-128megs of RAM) to do the following reasonably well? 1) Route 2-4 T1's worth of traffic (judging from the recent fastforward thread I don't think this is a problem) 2) run BGP 3) do *extensive* inbound packet filtering (anti-spoofing, no broadcasts, etc.). 4) talk to the rest of the LAN through an ethernet interface Our Cisco 3640 with a Mips R4700/100Mhz is choking routinely with two T1's during periods of DoS attacks. It's quite capable of routing the traffic but the packet filtering is eating up all the CPU. Throw in ip accounting (which is only needed *during* an attack) and you can forget about any response. Thanks, Tim To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19980531230640.52576>