Firewall Profiling.

[Pawel Tyll]

Hi lists,

Are  there any profiling tools in the system or ports that would allow
me  to  determine how much processing is being done per packet and how
long  does  it  take? I would like to predict possible PPS load for my
system and perhaps locate and remove some bottlenecks.

Is  IPFW  efficient  enough  to  firewall  2x10GE  (in+out) interfaces
without  much  latency  increase,  when  running  on  modern  hardware
with Intel NICs? Majority of processing tasks would probably be setfib
according to matches in tables.

Pawel.