Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Snort Throughput Calculator

    Scheduled Pinned Locked Moved IDS/IPS
    2 Posts 2 Posters 617 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      ajohns
      last edited by

      I am wondering what the max throughput for a single interface may be based on running snort off the Super Micro XG-1541 (from Netgate). I have been reading up on Snort for a while now, but I cannot seem to find a good calculator for estimated throughput. My specific problem I am trying to figure out is if our connection spikes to 1.2 Gbps, how many rules can we actually use in Snort before the single CPU thread is maxed out and starts dropping packets. We are only looking at Snort because we are wanting to use the OpenAppID rules for stopping BYOD devices.

      1 Reply Last reply Reply Quote 0
      • bmeeksB
        bmeeks
        last edited by

        There are too many variables to make an accurate calculation in my view. Why not simply test it? You can turn on Performance Stats on the PREPROCESSORS tab and look through those log outputs to see where Snort is spending its time.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.