Network
In the last article, I wrote a program to return ICMP Echo Replies using XDP.
I implemented a program that returns ICMP Echo Replies, but it turned out that the ICMP checksum was not calculated correctly.
Quick Try at an Introduction to XDP Part 3 (ICMP Echo Reply Section 1) This time, I would like to describe how to correctly calculate and return the ICMP checksum.
Please praise me for writing for two consecutive days without being lazy.
…
In the previous article, we used eBPF Map in XDP to exchange data with user space.
Quick Start Guide to XDP: Part 2 (eBPF Map Edition) In the article before that, we wrote a program using XDP that drops all packets.
Quick Start Guide to XDP: Part 1 This time, we will write a program that responds with ICMP Echo Reply to ICMP Echo Request.
How to Respond with ICMP Echo Reply To respond with ICMP Echo Reply to an ICMP Echo Request, the following steps are necessary:
…
Dissatisfied with the previous switch, I ended up purchasing another Chinese 10G switch.
Home Network 10G Implementation (SKS8300-8X) Installing a 2.5Gbps-Compatible Multi-Gigabit Switch at Home (SKS3200M-8GPY1XF) Items Purchased Model Number Description Price Quantity Notes ONT-S508CL-8S 10Gbps Managed Switch ¥11,639 1 AliExpress FB-LINK SFP-2.5G-T 2.5Gbps RJ45 SFP Module ¥1,542 4 AliExpress XICOM XC-SFP+-SR 10G-SR SFP+ Module 10pcs ¥6,281 1 AliExpress Woeow-OM3 1M MMF LC-LC Duplex 1M ¥572 5 AliExpress The 10G-SR SFP+ modules were very cheap at about ¥628 each when buying 10 pieces.
…
Overview In the previous article, I wrote a program using XDP to DROP all packets.
Quick Start Guide to XDP This time, I’ll write a program that counts the number of packets that were DROPPED using eBPF Maps.
Again, this discussion is for those looking to quickly get hands-on with XDP + eBPF Maps.
Therefore, detailed explanations of eBPF and types of Maps not being used will be omitted.
Environment Setup This guide assumes an Ubuntu 22.
…
Overview This is a quick guide to get started with XDP.
Detailed explanations of eBPF and other concepts are omitted.
XDP is a framework for processing packets at the earliest stage of the Linux kernel’s networking stack, allowing programs to be directly inserted into the NIC (Network Interface Card) using eBPF.
Since XDP operates on packets at the earliest stage of the Linux kernel’s networking stack, it can process them faster than filters like iptables.
…
Overview I wanted to perform a load test with short packets, so I tried using Pktgen-DPDK.
It is necessary to enable IOMMU beforehand. IOMMU Activation Memo
Environment Environment Version Ubuntu 22.04 DPDK 23.11.1 Pktgen-DPDK main branch NIC Intel X520 DA2 Installing Required Packages Install dependencies
sudo apt-get update sudo apt-get install -y git build-essential libnuma-dev python3-pyelftools linux-headers-$(uname -r) meson ninja-build Building and Installing DPDK Download the DPDK library
DPDK Download I chose to use the latest LTS version, 23.
…
Following the introduction of the 10G home network (SKS8300-8X), I decided to purchase an 8-port 2.5Gbps Hatcho switch.
It features 8 multi-gigabit 2.5Gbps ports and one 10Gbps SFP+ port.
Purchased Items Model Description Price Quantity Notes SKS3200M-8GPY1XF 2.5Gbps Management Switch ¥10,104 1 AliExpress CAB-10GSFP-P0.5M-30(Cisco-1pc)-ip 10Gbps SFP+ 0.5m DAC Cable ¥1,599 1 Amazon Items Received Main unit Power cable Manual (initial IP address for WebUI not included…) Rubber feet The login information was noted on the back of the main unit.
…
Notes on using non-Intel SFP+ with Intel X520 DA2 on Linux.
Add driver options # cat << _EOF_ > /etc/modprobe.d/ixgbe.conf options ixgbe allow_unsupported_sfp=1,1 _EOF_ Unload and reload the driver # modprobe -r ixgbe # modprobe ixgbe Regenerate initramfs # update-initramfs -u Without this, allow_unsupported_sfp=1,1 will not be enabled on reboot.
…
Background I introduced NURO Hikari 2G at home and installed the SONY NSD-G1000T, but I couldn’t use the 2.5Gbps port and was wasting the 2Gbps line. There weren’t any affordable managed switches with 2.5Gbps ports, but I found a very cheap managed 10Gbps switch called SKS8300-8X and decided to buy it as a guinea pig. It has 8 10G SFP+ ports and costs less than 15,000 yen. Moreover, it’s a
…
Here’s a note on setting up Wireguard using netplan. I couldn’t find many Japanese articles on this topic.
Tested on Ubuntu 20.04.
Server Side Generating private and public keys # umask 077 # wg genkey | tee private.key | wg pubkey > public.key netplan configuration network: tunnels: wg0: mode: wireguard key: <Generated private.key> port: 50000 # UDP port number to listen on addresses: [ 192.168.2.1/30 ] # IP address for wg0 peers: - allowed-ips: [0.
…