Accelerate in-line packet processing using fast queue

Chun-Ying Huang; Chi Ming Chen; Shu Ping Yu; Sheng Yao Hsu; Chih Hung Lin

doi:10.1109/TENCON.2010.5686441

Accelerate in-line packet processing using fast queue

Chun-Ying Huang^*, Chi Ming Chen, Shu Ping Yu, Sheng Yao Hsu, Chih Hung Lin

^*Corresponding author for this work

Department of Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

3 Scopus citations

Abstract

It is common for network researchers and system developers to run packet processing algorithms on UNIX-like operating systems. For the ease of development, complex packet processing algorithms are often implemented at the user-space level. As a result, performance benchmarks for packet processing algorithms often show a great gap when packets are input from different sources. An algorithm that performs well by reading packets from a raw packet trace file may get a worse result when it reads packets directly from a network interface. Such a phenomenon gets much worse when the algorithm is going to process packets in-line. In this paper, we identify the performance bottleneck of existing in-line packet processing implementations in the Linux operating system. Based on the observation, a new software architecture, named Fast Queue, is proposed and implemented to show that the identified bottleneck can be effectively eliminated. Experiments show that the proposed software architecture reduces 30% of CPU utilization. In addition, the overall system throughput can be improved by a factor of 1.6 when it is applied to the well-known snort-inline open source intrusion detection system.

Original language	English
Title of host publication	TENCON 2010 - 2010 IEEE Region 10 Conference
Pages	1048-1052
Number of pages	5
DOIs	https://doi.org/10.1109/TENCON.2010.5686441
State	Published - 1 Dec 2010
Event	2010 IEEE Region 10 Conference, TENCON 2010 - Fukuoka, Japan Duration: 21 Nov 2010 → 24 Nov 2010

Publication series

Name	IEEE Region 10 Annual International Conference, Proceedings/TENCON

Conference

Conference	2010 IEEE Region 10 Conference, TENCON 2010
Country	Japan
City	Fukuoka
Period	21/11/10 → 24/11/10

Keywords

Fast Queue
In-line packet processing
Zero copy interface

Access to Document

10.1109/TENCON.2010.5686441

Link to publication in Scopus

Fingerprint Dive into the research topics of 'Accelerate in-line packet processing using fast queue'. Together they form a unique fingerprint.

Cite this

@inproceedings{35e5eab2cbb34af6a9bf3272d3f02c4d,

title = "Accelerate in-line packet processing using fast queue",

abstract = "It is common for network researchers and system developers to run packet processing algorithms on UNIX-like operating systems. For the ease of development, complex packet processing algorithms are often implemented at the user-space level. As a result, performance benchmarks for packet processing algorithms often show a great gap when packets are input from different sources. An algorithm that performs well by reading packets from a raw packet trace file may get a worse result when it reads packets directly from a network interface. Such a phenomenon gets much worse when the algorithm is going to process packets in-line. In this paper, we identify the performance bottleneck of existing in-line packet processing implementations in the Linux operating system. Based on the observation, a new software architecture, named Fast Queue, is proposed and implemented to show that the identified bottleneck can be effectively eliminated. Experiments show that the proposed software architecture reduces 30% of CPU utilization. In addition, the overall system throughput can be improved by a factor of 1.6 when it is applied to the well-known snort-inline open source intrusion detection system.",

keywords = "Fast Queue, In-line packet processing, Zero copy interface",

author = "Chun-Ying Huang and Chen, {Chi Ming} and Yu, {Shu Ping} and Hsu, {Sheng Yao} and Lin, {Chih Hung}",

year = "2010",

month = dec,

day = "1",

doi = "10.1109/TENCON.2010.5686441",

language = "English",

isbn = "9781424468904",

series = "IEEE Region 10 Annual International Conference, Proceedings/TENCON",

pages = "1048--1052",

booktitle = "TENCON 2010 - 2010 IEEE Region 10 Conference",

note = "null ; Conference date: 21-11-2010 Through 24-11-2010",

}

Accelerate in-line packet processing using fast queue. / Huang, Chun-Ying; Chen, Chi Ming; Yu, Shu Ping; Hsu, Sheng Yao; Lin, Chih Hung.

TENCON 2010 - 2010 IEEE Region 10 Conference. 2010. p. 1048-1052 5686441 (IEEE Region 10 Annual International Conference, Proceedings/TENCON).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Accelerate in-line packet processing using fast queue

AU - Huang, Chun-Ying

AU - Chen, Chi Ming

AU - Yu, Shu Ping

AU - Hsu, Sheng Yao

AU - Lin, Chih Hung

PY - 2010/12/1

Y1 - 2010/12/1

N2 - It is common for network researchers and system developers to run packet processing algorithms on UNIX-like operating systems. For the ease of development, complex packet processing algorithms are often implemented at the user-space level. As a result, performance benchmarks for packet processing algorithms often show a great gap when packets are input from different sources. An algorithm that performs well by reading packets from a raw packet trace file may get a worse result when it reads packets directly from a network interface. Such a phenomenon gets much worse when the algorithm is going to process packets in-line. In this paper, we identify the performance bottleneck of existing in-line packet processing implementations in the Linux operating system. Based on the observation, a new software architecture, named Fast Queue, is proposed and implemented to show that the identified bottleneck can be effectively eliminated. Experiments show that the proposed software architecture reduces 30% of CPU utilization. In addition, the overall system throughput can be improved by a factor of 1.6 when it is applied to the well-known snort-inline open source intrusion detection system.

AB - It is common for network researchers and system developers to run packet processing algorithms on UNIX-like operating systems. For the ease of development, complex packet processing algorithms are often implemented at the user-space level. As a result, performance benchmarks for packet processing algorithms often show a great gap when packets are input from different sources. An algorithm that performs well by reading packets from a raw packet trace file may get a worse result when it reads packets directly from a network interface. Such a phenomenon gets much worse when the algorithm is going to process packets in-line. In this paper, we identify the performance bottleneck of existing in-line packet processing implementations in the Linux operating system. Based on the observation, a new software architecture, named Fast Queue, is proposed and implemented to show that the identified bottleneck can be effectively eliminated. Experiments show that the proposed software architecture reduces 30% of CPU utilization. In addition, the overall system throughput can be improved by a factor of 1.6 when it is applied to the well-known snort-inline open source intrusion detection system.

KW - Fast Queue

KW - In-line packet processing

KW - Zero copy interface

UR - http://www.scopus.com/inward/record.url?scp=79951635398&partnerID=8YFLogxK

U2 - 10.1109/TENCON.2010.5686441

DO - 10.1109/TENCON.2010.5686441

M3 - Conference contribution

AN - SCOPUS:79951635398

SN - 9781424468904

T3 - IEEE Region 10 Annual International Conference, Proceedings/TENCON

SP - 1048

EP - 1052

BT - TENCON 2010 - 2010 IEEE Region 10 Conference

Y2 - 21 November 2010 through 24 November 2010

ER -