From mboxrd@z Thu Jan 1 00:00:00 1970 From: Rene Gallati Date: Wed, 31 Mar 2004 21:24:21 +0000 Subject: Re: [LARTC] large routing table Message-Id: <406B3705.404@draxinusom.ch> List-Id: References: <4069FB34.6000507@draxinusom.ch> In-Reply-To: <4069FB34.6000507@draxinusom.ch> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable To: lartc@vger.kernel.org Hello, > I know that routes can be cached what should help, but > here we are talking about tc u32 filter, which can not be cached as I know > without hierarchy it is not posible to decrease amount of testing >=20 > but the interesting idea is to use route for packet classification > or it can be simulated with netfilters connmark module. > then amount of test to be done will be more than half of active connectio= ns > number. I think I will do exactly that. I was thinking somewhere along the lines=20 that the routing infrastructure would be the best place to do it, but=20 the connection tracker of netfilter is quite a bonus since it keeps=20 state and so does minimize the times when I need to walk my=20 classification tree to find out how to treat the connection. Also I don't really need to route, since all the traffic goes out of the=20 same interface anyway. Thanks for all the hints ! CU Ren=E9 >=20 > ----- Original Message -----=20 > From: > To: "Roy" > Cc: > Sent: Wednesday, March 31, 2004 4:06 AM > Subject: Re: [LARTC] large routing table >=20 >=20 >=20 >>On Wed, 31 Mar 2004, Roy wrote: >> >> >>>100kbytes of prefixes is not so good , hashing does not mean >> >>anything >> >>>faster when checking ip you will need to test 4 bytes in any >> >>way, since >> >>>hash is usualy 32 bit too. this can help on very complex rules >> >>only. so >> >>>if you pump 100 kbytes of prefixes this is probably 7000 >> >>addreses so on >> >>>each packet 7000 tests will be done. >> >>Incorrect. Linux route lookup is crappy, but not THAT crappy. >>Route-cache somewhat helps too. >> >>-alex >> >=20 >=20 > _______________________________________________ > LARTC mailing list / LARTC@mailman.ds9a.nl > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ >=20 _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/