| Speaker : | Pedro Maria Santiago del Rio |
| Universidad Autónoma de Madrid (UAM) | |
| Date: | 18/04/2012 |
| Time: | 2:00 pm - 3:00 pm |
| Location: | LINCS Meeting Room 40 |
Abstract
In this paper, we present a software-based traffic classification engine running on off-the-shelf multi-core hardware, able to process in real-time aggregates of up to 15 million packet per second over a single 10Gbps interface.This significant advance with respect to achievable classification rates with respect to the current state of the art is possible due to: (i) the use of Packet Shading to efficiently move batches of packet headers from the NIC to the main CPU. (ii) the use of lightweight statistical classification techniques expoiting the size of the first few packets of a flow. (iii) a careful tuning of several aspects of the software application and of the hardware environment.Using both real Tier-1 traces and synthetic traffic, we demonstrate that traffic classification of more than 10Gbps traffic aggregates is feasible with open-source sofware on common hardware.