From owner-freebsd-net@FreeBSD.ORG  Thu Nov  6 15:23:04 2014
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id CB7C85A0;
 Thu,  6 Nov 2014 15:23:04 +0000 (UTC)
Received: from mail-wi0-x22a.google.com (mail-wi0-x22a.google.com
 [IPv6:2a00:1450:400c:c05::22a])
 (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 574A8D2B;
 Thu,  6 Nov 2014 15:23:04 +0000 (UTC)
Received: by mail-wi0-f170.google.com with SMTP id r20so1762501wiv.5
 for <multiple recipients>; Thu, 06 Nov 2014 07:23:02 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
 h=mime-version:sender:in-reply-to:references:from:date:message-id
 :subject:to:cc:content-type;
 bh=e2x4DaxKpjw+8DS/X+T4ZpctDxaav11Z1lJ9hmDynj0=;
 b=hC8iJe2d2oYT+PG4yqd/5DOay5vV3gSQbnnCAUrt/TaCGaT+e1ooNULHY/exUXk5CM
 IWle7zTL7w6Eq5Od9KHdwbWhyF6EoWLcQGQNjWP5zgswKanDnbQ/HcFj1HP/d3JL0fCV
 7vG1itFs34Ekdg7XFmnpudFUnPt/wllTy5kBscl+P50RLrIn2G4SlKOjFdt4VMd2S/0M
 grmh0bBKZ8sibYpj6VaxU47vRDBw6JBuHbTr+ImHshXe8chGRL/PfbTMN+tP0hfuovfw
 YiBnS6n21suNGSU+tli3i08LIB6eLftKugNrdAGgFVvGZ80Sme+chujzGb2IY5gURe4Q
 a+6w==
X-Received: by 10.180.82.170 with SMTP id j10mr42463495wiy.35.1415287382733;
 Thu, 06 Nov 2014 07:23:02 -0800 (PST)
MIME-Version: 1.0
Sender: cochard@gmail.com
Received: by 10.194.164.73 with HTTP; Thu, 6 Nov 2014 07:22:42 -0800 (PST)
In-Reply-To: <545B89DC.2090305@gmail.com>
References: <92D22BEA-DDE5-4C6E-855C-B8CACB0319AC@neville-neil.com>
 <545A5C4D.3050603@FreeBSD.org>
 <03107CAB-445B-4BA9-8F50-69143E360010@neville-neil.com>
 <CA+q+TcpFrufGV3Wj8QTH1CX6aBVuu_nw9gGD-pg99p270219RQ@mail.gmail.com>
 <545B89DC.2090305@gmail.com>
From: =?ISO-8859-1?Q?Olivier_Cochard=2DLabb=E9?= <olivier@cochard.me>
Date: Thu, 6 Nov 2014 16:22:42 +0100
X-Google-Sender-Auth: BPE1rMol9D5NmjmSeQEW78vymBA
Message-ID: <CA+q+TcrfSM4H=gP_YR9dnYPfDMEuAO5AWRy7RYeRS52T9UZ9_w@mail.gmail.com>
Subject: Re: IPSEC in GENERIC [was: Re: netmap in GENERIC, by default, on HEAD]
To: Hooman Fazaeli <hoomanfazaeli@gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
X-Content-Filtered-By: Mailman/MimeDel 2.1.18-1
Cc: "Andrey V. Elsukov" <ae@freebsd.org>,
 "Alexander V. Chernikov" <melifaro@freebsd.org>,
 John-Mark Gurney <jmg@funkthat.com>,
 "freebsd-net@freebsd.org" <net@freebsd.org>
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.18-1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net/>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 06 Nov 2014 15:23:05 -0000

On Thu, Nov 6, 2014 at 3:46 PM, Hooman Fazaeli <hoomanfazaeli@gmail.com>
wrote:

>
> => This permit me to obtain the maximum PPS forwarded by the server.
>>
> May be off-topic: How much PPS and on  which hardware?
>

It seems I'm not clear: My question is just "What is the correct
methodology for benching IPSec performance ?"
There is a RFC 2544 and RFC 3222 that explain methodologies for benching
routers (packet forwarding) and RFC 3511 for benching firewall... but what
about IPSec ?
I didn't see any impact by enabling IPSec on the kernel (just enabling and
not using it) on my benchs, but others people measured huge impact: Then my
methodology is wrong.
This is why I would to know if we could define a reproducible methodology
for "benching IPSec" (packet size distribution, number of SA/SP, etc...).