From owner-freebsd-net@FreeBSD.ORG Thu Jul 16 16:45:28 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B8FA7106564A for ; Thu, 16 Jul 2009 16:45:28 +0000 (UTC) (envelope-from julian@elischer.org) Received: from outV.internet-mail-service.net (outv.internet-mail-service.net [216.240.47.245]) by mx1.freebsd.org (Postfix) with ESMTP id A19EF8FC17 for ; Thu, 16 Jul 2009 16:45:28 +0000 (UTC) (envelope-from julian@elischer.org) Received: from idiom.com (mx0.idiom.com [216.240.32.160]) by out.internet-mail-service.net (Postfix) with ESMTP id 4E912B3E6; Thu, 16 Jul 2009 09:45:28 -0700 (PDT) X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e Received: from julian-mac.elischer.org (home.elischer.org [216.240.48.38]) by idiom.com (Postfix) with ESMTP id 104AD2D6015; Thu, 16 Jul 2009 09:45:27 -0700 (PDT) Message-ID: <4A5F5927.3080904@elischer.org> Date: Thu, 16 Jul 2009 09:45:27 -0700 From: Julian Elischer User-Agent: Thunderbird 2.0.0.22 (Macintosh/20090605) MIME-Version: 1.0 To: "Jacobs, Brian" References: <126E45722B459248997856ECB72DEB7701285DC0@host.lodgenet.com> In-Reply-To: <126E45722B459248997856ECB72DEB7701285DC0@host.lodgenet.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org Subject: Re: GRE tunnel limitations X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 16 Jul 2009 16:45:29 -0000 Jacobs, Brian wrote: > Does anyone have some realistic data on the number of GRE/ipip tunnels > FreeBSD 7.x can reasonably terminate? Assume no IPsec, just standard > encapsulation. I have an ad-hoc need to terminate about 1,4000 static > GRE tunnels (as Cisco 7206's are backordered until September). J > > > > Thanks in advance! > > > > /bmj > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" The limitation would be that there is an interface for reach one and the interface 'interface' uses a linked list. it might work but there would probably be scaling issues. I've often thought that what we need is a way to do "bulk encapsulatin interfaces" where there is not an "interface" assigned to each destination. (at least not one that shows up in 'ifconfig'). How will you want to decide which gre interface to use for a given packet? is it just a standard routing decision based on the remote address?