Linux Network Performance Ultimate Guide

(ntk148v.github.io)

196 points bratao | 1 comments | 27 Jul 24 01:17 UTC | HN request time: 0s | source

Show context

c0l0 ◴[27 Jul 24 08:53 UTC] No.41085314[source]▶

This would have been such a great resource for me just a few weeks ago!

We wanted to have finally encrypt the L2 links between our DCs and got quotes from a number of providers for hardware appliances, and I was like, "no WAY this ought to cost that much!', and went off to try to build something myself that hauled Ethernet frames over a wireguard overlay network at 10Gbps using COTS hardware. I did pull it off after a tenday of work or so, undercutting the cheapest offer by about 70% (and the most expensive one by about 95% or so...), but there was a lot of intricate reading and experimentation involved.

I am looking forward to validate my understanding against the content of this article - it looks very promising and comprehensive at first and second glance! Thanks for creating and posting it.

replies(2): >>41085350 #>>41085983 #

freedomben ◴[27 Jul 24 09:01 UTC] No.41085350[source]▶

>>41085314 #

Are you able to share your code? I'd be fascinated to see how you would do that.

replies(2): >>41085957 #>>41092289 #

1. jasonjayr ◴[27 Jul 24 11:50 UTC] No.41085957[source]▶

>>41085350 #

I just shared this a moment ago in another comment, but:

https://github.com/m13253/VxWireguard-Generator

https://gitlab.com/NickCao/RAIT

Both build a set of Wireguard configurations so you can setup a L2 mesh, and then run whatever routing protocol you want on them (Babel, BGP, etc)

(not the OP, but I use these the first one in my own multi-site network mesh between DO, AWS, 2x physical DC, and our office.)

↑