Linux 5.7 Netfilter To See AVX2 Optimizations For Big Performance Boost - Can Be Up To ~420% - Phoronix

Articles & Reviews
News Archive
Forums
Premium
Categories

Computers GPUs / Graphics Cards Linux Gaming Memory Motherboards CPUs / Processors Software Storage Operating Systems Peripherals

Linux 5.7 Netfilter To See AVX2 Optimizations For Big Performance Boost - Can Be Up To ~420%

Written by Michael Larabel in Linux Networking on 16 March 2020 at 12:00 AM EDT. 16 Comments

LINUX NETWORKING --

Linux 5.7's Netfilter framework is set to see better performance on modern Intel and AMD systems thanks to AVX2 optimizations.

Queued on Sunday in nf-next as the Netfilter staging grounds are AVX2 optimizations to provide great speed benefits.

Red Hat's Stefano Brivio has provided an AVX2-optimized nft_set_pipapo implementation. AVX2 works out well for optimizing the packet lookup routines of the Netfilter Pile Packet Policies.

In a test of injecting packets directly onto the in-going device path, an AMD EPYC 7402 "Rome" server where the testing took place was found to be significantly faster. The improvements varied from +26% to +420% with many of the tests being above the +100% range with this AVX2 implementation.

With Red Hat caring about all architectures, Stefano is also looking at a similar Arm NEON optimized version moving forward too.

This Netfilter AVX2 nft_set_pipapo implementation should see the light of day with the upcoming Linux 5.7 cycle with it already being part of nf-next.

16 Comments

Related News

BPF-Based Linux Firewall "bpfilter" Shows Impressive Performance Potential

Aya Makes It Easy To Write Rust-Based eBPF Programs For The Linux Kernel

OpenVPN DCO Linux Kernel Module Aims To Offer Faster VPN Performance

Linux 5.15 Staging Replaces Its Realtek RTL8188EU WiFi Driver

BPF Timers To Intel Additions Lead The Networking Changes With Linux 5.15

Netfilter Releases Nftables 1.0

About The Author

Author picture

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter or contacted via MichaelLarabel.com.

Popular News This Week

Google Finally Shifting To "Upstream First" Linux Kernel Approach For Android Features

Multiple Games Are Now Working With RADV's Ray-Tracing Code

Red Hat Is Hiring So Linux Can Finally Have Good HDR Display Support

That Didn't Take Long: KSMBD In-Kernel File Server Already Needs Important Security Fix

AMD + Valve Focusing On P-State / CPPC Driver With Schedutil For Better Linux Efficiency

Linux 5.16 To Add Quirk For The Steam Deck, Other DRM-Misc-Next Changes

Experimenting Is Underway For Rust Code Within Mesa

KDE Plasma 5.23 Beta Released As The 25th Anniversary Edition