From owner-freebsd-hackers Thu Sep 19 13:00:34 1996 Return-Path: owner-hackers Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id NAA21025 for hackers-outgoing; Thu, 19 Sep 1996 13:00:34 -0700 (PDT) Received: from brasil.moneng.mei.com (brasil.moneng.mei.com [151.186.109.160]) by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id MAA20114 for ; Thu, 19 Sep 1996 12:58:57 -0700 (PDT) Received: (from jgreco@localhost) by brasil.moneng.mei.com (8.7.Beta.1/8.7.Beta.1) id OAA11449; Thu, 19 Sep 1996 14:57:43 -0500 From: Joe Greco Message-Id: <199609191957.OAA11449@brasil.moneng.mei.com> Subject: Re: Routers - hardware received wisdom To: dennis@etinc.com (Dennis) Date: Thu, 19 Sep 1996 14:57:42 -0500 (CDT) Cc: hackers@freebsd.org In-Reply-To: <199609191929.PAA13911@etinc.com> from "Dennis" at Sep 19, 96 03:29:21 pm X-Mailer: ELM [version 2.4 PL24] Content-Type: text Sender: owner-hackers@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > Well, interfaces just queue packets for the OS, Yes :-) > so if you do your queue > management properly, you discard packets based on age, and if you have > enough memory to hold your bandwidth * hold_time you wont dump anything > that shouldnt be dumped. No. If your CPU is overloaded, you will end up dumping data that is valid and shouldn't be dumped, simply because you never have the chance to deal with it. And queueing only buys you a very little bit, because when it comes right down to it, if I can overload your router for a second, I can probably overload your router continuously - making any queueing you do utterly useless. > However, what you're talking about is not real data... Until it starts coming in at you off the Internet, outside of your control. THAT is the whole point. > you can bring a Cisco 4500 to its knees with about 512kbs of data under > attack, so the 4000 pps number ain't half bad! I definitely agree!! I would think it's actually pretty damn decent. ... JG