Linux 5.7 Netfilter To See AVX2 Optimizations For Big Performance Boost - Can Be Up To ~420% - Phoronix

Articles & Reviews
News Archive
Forums
Premium
Categories

Computers GPUs / Graphics Cards Linux Gaming Memory Motherboards CPUs / Processors Software Storage Operating Systems Peripherals

Linux 5.7 Netfilter To See AVX2 Optimizations For Big Performance Boost - Can Be Up To ~420%

Written by Michael Larabel in Linux Networking on 16 March 2020 at 12:00 AM EDT. 15 Comments

LINUX NETWORKING --

Linux 5.7's Netfilter framework is set to see better performance on modern Intel and AMD systems thanks to AVX2 optimizations.

Queued on Sunday in nf-next as the Netfilter staging grounds are AVX2 optimizations to provide great speed benefits.

Red Hat's Stefano Brivio has provided an AVX2-optimized nft_set_pipapo implementation. AVX2 works out well for optimizing the packet lookup routines of the Netfilter Pile Packet Policies.

In a test of injecting packets directly onto the in-going device path, an AMD EPYC 7402 "Rome" server where the testing took place was found to be significantly faster. The improvements varied from +26% to +420% with many of the tests being above the +100% range with this AVX2 implementation.

With Red Hat caring about all architectures, Stefano is also looking at a similar Arm NEON optimized version moving forward too.

This Netfilter AVX2 nft_set_pipapo implementation should see the light of day with the upcoming Linux 5.7 cycle with it already being part of nf-next.

15 Comments

Related News

Linux 5.6 Ships With Broken Intel WiFi Driver After Network Security Fixes Go Awry

WireGuard 1.0.0 Christened As A Modern Secure VPN Alternative To OpenVPN/IPsec

2020 Spring Cleaning: HP 100BaseVG AnyLAN Linux Network Driver Finally Getting Dropped

Google Engineer Posts Latest Patches For MAC + Audit Policy Using eBPF

IWD Linux Wireless Daemon Adds Full MAC Randomization, Override Support

Intel Ethernet E823 Support Coming To The ICE Driver In Linux 5.7

About The Author

Author picture

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter or contacted via MichaelLarabel.com.

Popular News This Week

It's Official But Sad: TrueOS Is Over As Once The Best Desktop BSD OS

Former Linux Developer Hans Reiser To Remain Locked Up

RHEL9 Likely To Drop Older x86_64 CPUs, Fedora Can Better Prepare With "Enterprise Linux Next"

VirtIO Video Driver Coming Together For The Mainline Linux Kernel

Some Of The Features To Look Forward To With Linux 5.7

Google Engineers Have Been Working On An AMD SB-TSI Temperature Driver

AMD Developers Looking At GNU C Library Platform Optimizations For Zen

Valve's Half-Life: Alyx Released - Linux Build Still Coming