Archive > 15.7 Legacy Series

Suricata/OPNsense Questions

<< < (3/3)

lucifercipher:

--- Quote from: Supermule on July 06, 2015, 09:26:39 pm ---I actually tested it quite a lot in the case with SYN flooding and the sweet spot for pfsense/opnsense is 4 cores on the same socket and 4GB memory.

It performs damn well on that exact combo and dont ask me why.

Its like when you move across sockets something fucks up pf and the whole route of packets and the attached CPU's does a bad job spreading the load.

--- End quote ---

Thats cool Supermule.

With what pre-processors enabled? 4 Cores is pretty good and is above moderate hardware. If you open up and see the insides of Juniper SRX200 series then you will see Dual OCTEON chips. That brings us to a never ending debate created by them so called "hardware based crap" :D

4 IPS instances gave me max 5+ Gbps IPS througput per device with the 12 Cores clocked at 2.25Ghz. Can you run some benchmarks with OPNsense on your current hardware please?

Supermule:
Yes. But I dont run OPS in production where I sit on some serious hardware.

I only test it at home on a CARP cluster with 8 cores and 32GB ram total pr. server.

Wont run OPS in production yet since IDS/IPS is not at par yet.

Navigation

[0] Message Index

[*] Previous page