Date: Sun, 16 Mar 2008 18:20:12 +0100 (CET) From: Wojciech Puchar <wojtek@wojtek.tensor.gdynia.pl> To: Erik Trulsson <ertr1013@student.uu.se> Cc: Razmig K <strontium90@gmail.com>, Dan Nelson <dnelson@allantgroup.com>, Ian Smith <smithi@nimnet.asn.au>, freebsd-questions@freebsd.org Subject: Re: IPFW with user-ppp's NAT Message-ID: <20080316181837.S20499@wojtek.tensor.gdynia.pl> In-Reply-To: <20080316160317.GA35937@owl.midgard.homeip.net> References: <Pine.BSF.3.96.1080316193840.4307A-100000@gaia.nimnet.asn.au> <20080316163701.B14645@wojtek.tensor.gdynia.pl> <20080316160317.GA35937@owl.midgard.homeip.net>
next in thread | previous in thread | raw e-mail | index | archive | help
>> >> what's wrong in userland natd? > > Performance. With userland natd, every packet that passes through natd > must pass from kernel to userland (causing one context switch) and back > again (causing another context switch). This will be slower and use more > CPU than doing it all inside the kernel, without any context switches. true, anyway for my two 2Mbps symmetric connection (all for nat), and three 4/0.5Mbit connections (part for nat, mostly for squid) all natd processes takes at most 3 percent of single core (core2duo).
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080316181837.S20499>