On 05/06/09 13:33, J.C. Roberts wrote:
I need to collect raw throughput statistics without increasing latency
or reducing bandwidth on 10GbE fiber links,
..
> As far as my understanding allows, I believe the best way
to do this is with a physical network tap connected to monitoring
equipment. I figure folks running/maintaining OpenBSD firewalls might
be familiar with using physical network taps for deploying IDS/IPS since
using bridges on such systems is a "Bad Idea" (R)(TM).
Capturing and counting 10GE depends on one relatively small hardware
step, getting it on an FPGA (I presume every vendor has application
circuits for that), and after that... Well in silicon the saying is
"real man have fabs", for software it's "real programmers can do it in
hardware", single cycle I mean of course. The programmer and algorithm
designers need to be very handy with how the bits really move through
the hardware.
We did 2.5Gbit, ATM, GE and POS about 6-7 years ago, technology has
advanced quite a lot, 10Gbps now is easier than 2.5Gbps then.
Hard but also real fun and stellar praises (not sales!) if you get it
working. Our card
http://www.idd.nl/ft/pci.jpg
could easily still be the only one that can do this counting at the IP
level for ATM at 2.5Gbps.
+++chefren
