Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: iptables latency evaluation
Special Forums Cybersecurity iptables latency evaluation Post 302568808 by Slaughterman on Friday 28th of October 2011 09:32:44 AM
Old 10-28-2011
iptables latency evaluation
Hello guys,

I'm actually working on my master thesis which has for subject the evaluation of virtual firewall in a cloud environment. To do so, I installed my own cloud using OpenNebula (as a frontend) and Xen (as a Node) on two different machines. The Xen machine is my virtual firewall thanks to iptables.

I am running a number of different performance tests over the xen machine to evaluate the performance of iptables. One of this test, would be the latency time introduced by the processing of the packet in iptables; and this is where I'm having troubles testing it.

Here are the different ideas I had so far, and their problems:
- ICMP Timestamp pinging. An ICMP Timestamp reply contains three timestamps: originate timestamp which is the time the sender last touched the message, receive timestamp which is the time the receiver first touched the message, and transmit timestamp which is the time the receiver last touched the message before sending it back. By subtracting the transmit timestamp by the receive timestamp, we get the processing latency of the packet. The problem is the time is in milliseconds which is no precise enough as the latency (at least when a very little number of rules are active in iptables) is lower than 1ms.
- Normal ping ran two times with the firewall on, and then off. The process time is the subtraction between this two times, divided buy 2 (because of round-trip latency) A little more precise has it is in microsecond, but still not enough (nanoseconds would be good). And I fear all this calculation adds too much approximation anyway...
- Wireshark timestamp calculation: sucks totally as wireshark capture the packets before they enter iptables
- Normal ping one time. Displaying the latency as round-trip latency. I won't get the processing latency, but I will still be able to display in a graph the effect of rules and throughput level on the overall latency of a connection going through the firewall. That's my "best" plan so far, but it sucks because it's off the original idea which is measuring the firewall latency only.

Do you guys have any comments on my ideas, or even better a solution to accurately measure firewall latency ?

Cheers,

Clement
 

5 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

cp command evaluation

Hi all! I'm writting one script to copy a file in various folders, but there are 2 things to validate. First that the folder where i'll be cpying exists, and second that i have permissions to copy the file in it. so far i have found the way to validate the folder exists, but when trying to... (6 Replies)
Discussion started by: feliperivera
6 Replies

2. UNIX for Advanced & Expert Users

Determining typing latency

Hi all, When I use an editor (vi) that is spawned in a remote server, visually I could see the latency between typing a character/word and being displayed on the terminal. I could see this visually but how do I get a metric on this or how to quantify this? As expected, when I type in a editor... (6 Replies)
Discussion started by: matrixmadhan
6 Replies

3. AIX

Latency Test

Hi every one, we have a set up in solaris 8 and 9 and running many cshell scripts.. we are migrate to AIX . Now, i want to know the latency difference between two boxes(Solaris and AIX). Kindly help me to , how to do Latency test.. (0 Replies)
Discussion started by: Madhu Siddula
0 Replies

4. Solaris

Latency Test

Hi every one, we have a set up in solaris 8 and 9 and running many cshell scripts.. we are migrate to AIX . Now, i want to know the latency difference between two boxes(Solaris and AIX). Kindly help me to , how to do Latency test.. (2 Replies)
Discussion started by: Madhu Siddula
2 Replies

5. Red Hat

Memory release latency issue

I have an application that routinely alloc() and realloc() gigabyte blocks of memory for image processing applications; specifically performing rotations of huge images, or creating/ deleting huge image buffers to contain multiple images. Immediately upon completion of an operation I call free() to... (9 Replies)
Discussion started by: imagtek
9 Replies

LEARN ABOUT DEBIAN

html::tagcloud

HTML::TagCloud(3pm)					User Contributed Perl Documentation				       HTML::TagCloud(3pm)

NAME

       HTML::TagCloud - Generate An HTML Tag Cloud

SYNOPSIS

	 # A cloud with tags that link to other web pages.
	 my $cloud = HTML::TagCloud->new;
	 $cloud->add($tag1, $url1, $count1);
	 $cloud->add($tag2, $url2, $count2);
	 $cloud->add($tag3, $url3, $count3);
	 my $html = $cloud->html_and_css(50);

	 # A cloud with tags that do not link to other web pages.
	 my $cloud = HTML::TagCloud->new;
	 $cloud->add_static($tag1, $count1);
	 $cloud->add_static($tag2, $count2);
	 $cloud->add_static($tag3, $count3);
	 my $html = $cloud->html_and_css(50);

	 # A cloud that is comprised of tags in multiple categories.
	 my $cloud = HTML::TagCloud->new;
	 $cloud->add($tag1, $url1, $count1, $category1);
	 $cloud->add($tag2, $url2, $count2, $category2);
	 $cloud->add($tag3, $url3, $count3, $category3);
	 my $html = $cloud->html_and_css(50);

	 # The same cloud without tags that link to other web pages.
	 my $cloud = HTML::TagCloud->new;
	 $cloud->add_static($tag1, $count1, $category1);
	 $cloud->add_static($tag2, $count2, $category2);
	 $cloud->add_static($tag3, $count3, $category3);
	 my $html = $cloud->html_and_css(50);

	 # Obtaining uncategorized HTML for a categorized tag cloud.
	 my $html = $cloud->html_without_categories();

	 # Explicitly requesting categorized HTML.
	 my $html = $cloud->html_with_categories();

DESCRIPTION

       The HTML::TagCloud module enables you to generate "tag clouds" in HTML. Tag clouds serve as a textual way to visualize terms and topics
       that are used most frequently. The tags are sorted alphabetically and a larger font is used to indicate more frequent term usage.

       Example sites with tag clouds: <http://www.43things.com/>, <http://www.astray.com/recipes/> and <http://www.flickr.com/photos/tags/>.

       This module provides a simple interface to generating a CSS-based HTML tag cloud. You simply pass in a set of tags, their URL and their
       count.  This module outputs stylesheet-based HTML. You may use the included CSS or use your own.

CONSTRUCTOR

   new
       The constructor takes a few optional arguments:

	 my $cloud = HTML::TagCloud->new(levels=>10);

       if not provided, levels defaults to 24

	 my $cloud = HTML::TagCloud->new(distinguish_adjacent_tags=>1);

       If distinguish_adjacent_tags is true HTML::TagCloud will use different CSS classes for adjacent tags in order to be able to make it easier
       to distinguish adjacent multi-word tags.  If not specified, this parameter defaults to a false value.

	 my $cloud = HTML::TagCloud->new(categories=>@categories);

       If categories are provided then tags are grouped in separate divisions by category when the HTML fragment is generated.

METHODS

   add
       This module adds a tag into the cloud. You pass in the tag name, its URL and its count:

	 $cloud->add($tag1, $url1, $count1);
	 $cloud->add($tag2, $url2, $count2);
	 $cloud->add($tag3, $url3, $count3);

   add_static
       This module adds a tag that does not link to another web page into the cloud.  You pass in the tag name and its count:

	 $cloud->add_static($tag1, $count1);
	 $cloud->add_static($tag2, $count2);

   tags($limit)
       Returns a list of hashrefs representing each tag in the cloud, sorted by alphabet. Each tag has the following keys: name, count, url and
       level.

   css
       This returns the CSS that will format the HTML returned by the html() method with tags which have a high count as larger:

	 my $css  = $cloud->css;

   html($limit)
       This returns the tag cloud as HTML without the embedded CSS (you should use both css() and html() or simply the html_and_css() method). If
       any categories were specified when items were being placed in the cloud then the tags will be organized into divisions by category name.
       If a limit is provided, only the top $limit tags are in the cloud, otherwise all the tags are in the cloud:

	 my $html = $cloud->html(200);

   html_with_categories($limit)
       This returns the tag cloud as HTML without the embedded CSS.  The tags will be arranged into divisions by category.  If a limit is
       provided, only the top $limit tags are in the cloud.  Otherwise, all tags are in the cloud.

   html_without_categories($limit)
       This returns the tag cloud as HTML without the embedded CSS.  The tags will not be grouped by category if this method is used to generate
       the HTML.

   html_and_css($limit)
       This returns the tag cloud as HTML with embedded CSS. If a limit is provided, only the top $limit tags are in the cloud, otherwise all the
       tags are in the cloud:

	 my $html_and_css = $cloud->html_and_css(50);

AUTHOR

       Leon Brocard, "<acme@astray.com>".

COPYRIGHT

       Copyright (C) 2005-6, Leon Brocard

       This module is free software; you can redistribute it or modify it under the same terms as Perl itself.

perl v5.12.3							    2011-06-18						       HTML::TagCloud(3pm)
All times are GMT -4. The time now is 01:50 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy