[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [OT - interface bandwidth] was: Sampled Traffic Analysis by Internet-Exchange-Level Adversaries
- To: or-talk@xxxxxxxxxxxxx
- Subject: Re: [OT - interface bandwidth] was: Sampled Traffic Analysis by Internet-Exchange-Level Adversaries
- From: coderman <coderman@xxxxxxxxx>
- Date: Tue, 29 May 2007 09:33:42 -0700
- Delivered-to: archiver@xxxxxxxx
- Delivered-to: or-talk-outgoing@xxxxxxxx
- Delivered-to: or-talk@xxxxxxxx
- Delivery-date: Tue, 29 May 2007 12:33:51 -0400
- Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=KlBGWOhkDjlz4vo5jniDo0PhGpbw7B/nIiqXN7pCJcITBwdox98f2X1cBv5kDgOxZtXRwsH8tl/W2wmYNBy21wBwTLFaxhOM4wo0P/sTYd/V2lV5axoXNoj8ql5rdGgBGgDQUCspU4vSOUUiVIDgyGmRAJC3tsRe1gRCeZMU0gw=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=qgQv4GLp//DhpA2DMcl+VCJ6y5PD2zU9jfQLw7SlemxGyVbCjNnlE3nxrr6JJbv+NM0yBTe97u03eXIaF7Sg8trExm9BIhXF+eaEAZaHNgD7YCoU24HfIGaCVa3TMOxDeUYKT6d9Ms6T3edXCO3i/OM0QY5GTWEJfyKUODNfyj0=
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
On 5/29/07, Tony <Tony@xxxxxxxxxxxxx> wrote:
Windows has offered over 10 Gigabit throughput on a workstation (running Windows Server 2003) since 2005...
veering off topic here, but the vast majority of 10GigE devices have
hardware TCP offload support, which is how OS stacks can push toward
the line limits. without offload support the checksum and tcp
protocol overhead vastly reduces throughput and taxes the processor.
so inspecting packets at line rates, even simple header matching,
becomes problematic. if you look at devices designed to do this kind
of inspection on 10GigE and equivalent links (cloudshield, narus, etc)
they all use either custom ASIC's or FPGA's to offload matching.