Efficient Serving of VPN Endpoints on COTS Server Hardware

Daniel Raumer, Sebastian Gallenmuller, Paul Emmerich, Lukas Mardian, Georg Carle

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

11 Scopus citations

Abstract

Of late an increasing amount of functionalityin computer networks is provided by commodityx86 hardware wherein the CPU is the main bottleneck. Relieving the CPU from a portion of its computationalstress leads to a lowered number of cycles spent on eachsingle packet. Subsequently, servers are able to dealwith millions of packets per second. We show a casestudy in which we used the cryptographic offloadingfunctionality of commodity NICs to build a VPN IPsecgateway on an x86 server, where we required only oneCPU core to serve 10 GbE line rate. The source codeof the NIC-Accelerated VPN gateway in our case studyis publicly available. Our case study shows the tradeoffsbetween manifold software-And high performance offloading hardware-provided functionality.

Original languageEnglish
Title of host publicationProceedings - 2016 5th IEEE International Conference on Cloud Networking, CloudNet 2016
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages164-169
Number of pages6
ISBN (Electronic)9781509050932
DOIs
StatePublished - 6 Dec 2016
Event5th IEEE International Conference on Cloud Networking, CloudNet 2016 - Pisa, Italy
Duration: 3 Oct 20166 Oct 2016

Publication series

NameProceedings - 2016 5th IEEE International Conference on Cloud Networking, CloudNet 2016

Conference

Conference5th IEEE International Conference on Cloud Networking, CloudNet 2016
Country/TerritoryItaly
CityPisa
Period3/10/166/10/16

Keywords

  • Benchmarking
  • MoonGen
  • NIC offloading
  • VPN

Fingerprint

Dive into the research topics of 'Efficient Serving of VPN Endpoints on COTS Server Hardware'. Together they form a unique fingerprint.

Cite this