Re: eap authentication and cpu utilization

2008-02-21 Thread Norbert Wegener
Alan DeKok schrieb: Norbert Wegener wrote: Just for information: I made some tests on different machines. Around 60% of the theoretical maximum was the best value I got. The behaviour was heavy influenced by the parameters in the thread pool section and num_sql_socks, as I have a database

Re: eap authentication and cpu utilization

2008-02-18 Thread Alan DeKok
Norbert Wegener wrote: Just for information: I made some tests on different machines. Around 60% of the theoretical maximum was the best value I got. The behaviour was heavy influenced by the parameters in the thread pool section and num_sql_socks, as I have a database backend. Yes. The

Re: eap authentication and cpu utilization

2008-02-17 Thread Norbert Wegener
Just for information: I made some tests on different machines. Around 60% of the theoretical maximum was the best value I got. The behaviour was heavy influenced by the parameters in the thread pool section and num_sql_socks, as I have a database backend. Norbert Wegener Alan DeKok wrote:

Re: eap authentication and cpu utilization

2008-02-14 Thread Alan DeKok
Norbert Wegener wrote: Do you also have experience in how many percent of that theoretic value can be reached in practise with a database backend on the same machine where beside freeradius and the database nothing else is running? I don't have hard numbers, unfortunately. It also depends

Re: eap authentication and cpu utilization

2008-02-14 Thread Sebastian Heil
Original-Nachricht Datum: Wed, 13 Feb 2008 19:04:25 +0100 Von: Norbert Wegener [EMAIL PROTECTED] An: FreeRadius users mailing list freeradius-users@lists.freeradius.org Betreff: Re: eap authentication and cpu utilization Alan DeKok wrote: .. $ openssl speed

Re: eap authentication and cpu utilization

2008-02-14 Thread Alan DeKok
Sebastian Heil wrote: with my configuration, the freeradius-server can handle about 300 to 400 eap-tls-authentication-request per minute. the cpu load is about 30 - 35 %. That's less than 10/s. I think that the virtual server is running at a clock rate of about 800MHz, maybe less.

eap authentication and cpu utilization

2008-02-13 Thread Norbert Wegener
Simple authentication with login/password can be handled in large numbers with a recent cpu and freeradius. . EAP authentication on the other hand requires a great amount of cpu processing. Therefore I have a simple(?) question: Did someone already calcute the theoretically maximum number of

Re: eap authentication and cpu utilization

2008-02-13 Thread Alan DeKok
Norbert Wegener wrote: Simple authentication with login/password can be handled in large numbers with a recent cpu and freeradius. . EAP authentication on the other hand requires a great amount of cpu processing. It's all in the SSL rsa keying setup. Therefore I have a simple(?)

Re: eap authentication and cpu utilization

2008-02-13 Thread Norbert Wegener
Alan DeKok wrote: .. $ openssl speed Or $ openssl speed rsa http://www.madboa.com/geek/openssl/#benchmark-speed For 2048 bit rsa keys, the web page gives 77 signs/s for a 2GHz Intel Core 2. My 1GHz laptop gives around 20/s. That number becomes the limiting factor for any TLS-based