openbsd misc wrote:
On Wed, May 6, 2009 at 3:42 PM, Diana Eichert <deich...@wrench.com> wrote:
On Wed, 6 May 2009, J.C. Roberts wrote:
I need to collect raw throughput statistics without increasing latency
or reducing bandwidth on 10GbE fiber links, so most of the typical
methods are out of the question (i.e. like bridging, SPAN sessions on a
switch, ...). As far as my understanding allows, I believe the best way
to do this is with a physical network tap connected to monitoring
equipment. I figure folks running/maintaining OpenBSD firewalls might
be familiar with using physical network taps for deploying IDS/IPS since
using bridges on such systems is a "Bad Idea" (R)(TM).
I've found one company [1] which offers what I need, but I was wondering
if anyone can recommend a vendor of physical network taps?
Thanks,
jcr
[1] http://www.networktaps.com/products/index.html
--
J.C. Roberts
JC
We use physical taps at work, when I get the chance I'll take a look at
the vendor.
Also, you really think you can capture 10GE? Chuckle, good luck.
note that he wants "to collect raw throughput statistics" and doesn't
explicitly say dump all the traffic to disk. if he wanted to dump the
entire pipe to disk it would require > 10 COTS machines and load balancing.
diana
NSA,MI(x)/GCHQ,ASIO and their vendor friends would beg to differ.
i'd be more worried about the NBA, those dudes are huge and are known to
roll with guns in sweatpants.
jc is just trying to find a way to get traffic statistics, likely in
relation to his earlier 'remotely connected disk' discussion. move
along, nothing to see here.
I can't see any black helicopters and my Tin Foil hat fits fine
thanks for asking.
