From owner-freebsd-net@FreeBSD.ORG  Mon Aug 13 12:43:05 2012
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 87761106566B
	for <net@freebsd.org>; Mon, 13 Aug 2012 12:43:05 +0000 (UTC)
	(envelope-from cochard@gmail.com)
Received: from mail-wi0-f172.google.com (mail-wi0-f172.google.com
	[209.85.212.172])
	by mx1.freebsd.org (Postfix) with ESMTP id 11DFD8FC0C
	for <net@freebsd.org>; Mon, 13 Aug 2012 12:43:04 +0000 (UTC)
Received: by wicr5 with SMTP id r5so1920861wic.13
	for <net@freebsd.org>; Mon, 13 Aug 2012 05:43:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
	h=mime-version:sender:in-reply-to:references:from:date
	:x-google-sender-auth:message-id:subject:to:cc:content-type;
	bh=bEinYwGWeE9xtbLM1sufSlkIQ8IAeKXVoItRgSafgPE=;
	b=l8Ujd+BzNlgG2qiu5n31FiEZk/Kxn6ep1+rg0rrRnMQvTPi2gsT+iJQ3DtoN2OJRS8
	acUP/rwslxYyzW7g96tHRVvkWRsRKHMjeAV2OFfNclVVzQP5mAfvcD85CjjRuAsShqy6
	paSCZMeLzi+4gbaTVexwkZPPVeGgz8aNahm8z9OA03mqXUsZDQ8Ktpl12VBaAqMbcEbU
	+SMIVITqYw3sQg4cTMV3Emu6E9kPeJvsZ66iWBVFk6do8rh6YKRTLDB0SEx8mTW2vO6M
	9t2BB6fBomDP7eiU/UUvUNLD3aKxf3MhcYBZ6U1nIVo7mzXxTXyCSJ7O4IICZehkeIAI
	jD2w==
Received: by 10.216.136.66 with SMTP id v44mr6551874wei.159.1344861783748;
	Mon, 13 Aug 2012 05:43:03 -0700 (PDT)
MIME-Version: 1.0
Sender: cochard@gmail.com
Received: by 10.223.153.200 with HTTP; Mon, 13 Aug 2012 05:42:43 -0700 (PDT)
In-Reply-To: <20120813111722.GA79347@onelab2.iet.unipi.it>
References: <20120813111722.GA79347@onelab2.iet.unipi.it>
From: =?ISO-8859-1?Q?Olivier_Cochard=2DLabb=E9?= <olivier@cochard.me>
Date: Mon, 13 Aug 2012 14:42:43 +0200
X-Google-Sender-Auth: xaNF647baK3MGG34iLlrC5ac9kQ
Message-ID: <CA+q+TcqCG9sGH5aZwQvpc77Yi1XBTMXJr7QdADySX7iBOQH9YA@mail.gmail.com>
To: Luigi Rizzo <rizzo@iet.unipi.it>
Content-Type: text/plain; charset=ISO-8859-1
Cc: net@freebsd.org
Subject: Re: ipfw meets netmap (6.5 Mpps in userspace)
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Aug 2012 12:43:05 -0000

On Mon, Aug 13, 2012 at 1:17 PM, Luigi Rizzo <rizzo@iet.unipi.it> wrote:
> I just finished a netmap-enabled version of ipfw/dummynet, which
> runs in userspace and is able to process over 6 million packets per
> second (Mpps) with simple rulesets, and over 2.2 Mpps through
> dummynet pipes (tested on an i7-3400 connected to VALE ports;
> VALE is a software switch part of netmap).

Hi,

Reading the README file: "Real packet I/O is possible using netmap",
Can we use it for high-speed firewalling among real NICs now?

Can you confirm that we just need:
1. An up-to-date FreeBSD -current (build from source synced the
2012-08-03 mininum) with netmap module loaded;
2. netmap compliant NICs (ixgbe, e1000 or re);
3. compile, configure and start ipfw-user.

Can ipfw-user be directly connected to two netmap-enabled NICs in
place of vale switches->netmap bridge->NIC ?

Thanks,

Olivier