Re: RFC: NFS over TLS stats

On Thu, Oct 26, 2023 at 11:28 AM Rick Macklem <rick.macklem@gmail.com> wrote:
>
> On Wed, Oct 25, 2023 at 8:10 PM Simon J. Gerraty <sjg@juniper.net> wrote:
> >
> > Rick Macklem <rick.macklem@gmail.com> wrote:
> > > > kern.rpctls.tls.snd_msgbytes: 20828
> > > > kern.rpctls.tls.snd_msgcnt: 57
> > > > kern.rpctls.tls.rcv_tmsgbytes: 12336
> > > > kern.rpctls.tls.rcv_msgcnt: 57
> > > >
> > > > which allows for sysctl kern.rpctls.tls
> > > Not sure what you mean?
> >
> > If for some reason I only care about tls I can do
> >
> > sysctl kern.rpctls.tls
> >
> > and get
> >
> > kern.rpctls.tls.snd_msgbytes: 20828
> > kern.rpctls.tls.snd_msgcnt: 57
> > kern.rpctls.tls.rcv_tmsgbytes: 12336
> > kern.rpctls.tls.rcv_msgcnt: 57
> >
> > otherwise I'd have to do
> >
> > sysctl kern.rpctls | grep tls
> >
> > > I am listing counts for TLS and non-TLS so they can
> > > be compared. As such, a "tls" in the last component of
> > > the name is needed, unless I list the non-TLS ones
> >
> > Ok
> >
> > > under something else like:
> > > kern.rpc.snd_msgbytes
> > >
> > > I currently actually have them all as:
> > > kern.rpc.tls.XXX instead of kern.rpctls.XXX,
> >
> > Haha I didn't notice the tls in rpctls ;-)
> >
> > > since there was already kern.rpc.gss.XXX.
> >
> > kern.rpc.tls.XXX sounds fine
> Ok, how does this look?
>
> kern.rpc.nontls.tx_msgcnt: 58
> kern.rpc.nontls.tx_msgbytes: 20828
> kern.rpc.nontls.rx_msgcnt: 58
> kern.rpc.nontls.rx_msgbytes: 12072
As suggested by someone off-list, I have replaced "nontls"
with "unenc".

rick

> kern.rpc.tls.tx_msgcnt: 62639
> kern.rpc.tls.tx_msgbytes: 30800352
> kern.rpc.tls.rx_msgcnt: 62639
> kern.rpc.tls.rx_msgbytes: 13473756
> kern.rpc.tls.handshake_success: 1
> kern.rpc.tls.handshake_failed: 0
> kern.rpc.tls.alerts: 1
>
> It doesn't put the nonTLS and TLS lines for a given stat next to each other,
> but does allow either the nonTLS or TLS stats to be displayed easily
> and keeps the two sets adjacent, so they can be compared easily.
>
> rick
>
> >
> > >
> > > rick