Network
Terabits without Tall Tales: Reproducible Packet & Session Benchmarks in FD.io (CSIT + VPP)
<p>"For better or worse, benchmarks shape a field." FD.io's approach to the better: open, reproducible benchmarks-as-code that guide development and guard against regressions in the VPP data plane, via CSIT.
Problem: a race-track number doesn't translate to production deployments. CSIT's approach: MLRsearch (IETF BMWG, RFC in publication) for conditional throughput (NDR/PDR) with explicit stopping rules and inspectable artifacts; a continuous open-source benchmarking pipeline spanning packets and sessions; and a test matrix covering IMIX, QUIC/TLS, NAT, IPsec, ACL, SRv6, and NGFW/proxy use cases. This methodology drives terabit-class packet and session performance on commodity x86/Arm - reliably and repeatably.
Takeaways: a replicable recipe (tools, configs, artifacts) for your lab; why benchmarks-as-code beat ad-hoc testing; and concrete contribution paths across CSIT and VPP (tests, profiles, analysers, data visualisation).</p>
<p>Relevant links:
https://fd.io/
https://csit.fd.io/
https://wiki.fd.io/
https://github.com/FDio/</p>
Additional information
| Live Stream | https://live.fosdem.org/watch/h1302 |
|---|---|
| Type | devroom |
| Language | English |
More sessions
| 1/31/26 |
<p>This talk gives a rundown of various potential improvements being thought about and experimented on for the CUBIC Congestion Control implementation in Neqo, Firefox's QUIC stack. Detecting and recovering from Spurious Congestion Events -- network hiccups mistaken as congestion signal. Reacting differently to Explicit Congestion Notifications (ECN) than to packet loss. Optimizing the Slow Start exit point to avoid unnecessary loss through various heuristics.</p> <p>While many of these make ...
|
| 1/31/26 |
<p>iroh is a library to establish peer-to-peer QUIC connections assisted by relay servers. It needs to route UDP datagrams carrying QUIC payloads over relayed and holepunched network paths. While this used to be done outside of QUIC's knowledge, over the past year we have worked to adopt the QUIC multipath proposed standard so that QUIC itself is aware of multiple paths.</p> <p>This talk will cover iroh's experience of adding QUIC multipath to the Quinn library and the challenges of adopting it. ...
|
| 1/31/26 |
<p>The Web’s transport stack is changing rapidly, with QUIC, HTTP/3, and encrypted DNS seeing broad adoption. This talk gives an overview of the modern network protocols Firefox already deploys and invests in, including QUIC and HTTP/3’s growing share of Web traffic. It will highlight what Firefox actually sends on the wire today, what benefits we observe in practice, and where the Web’s protocol landscape stands in early 2026.</p> <p>The session will also offer an outlook on what’s ...
|
| 1/31/26 |
<h1>Harnessing Hardware for High-Performance Traffic Management in VPP</h1> <p><strong>Traffic Management (TM)</strong> is critical for predictable network performance. It controls packet priority, shapes transmission rates, and allocates bandwidth to meet SLAs in large-scale deployments such as ISPs, telecom networks, and data centers.</p> <p><strong>FD.io Vector Packet Processing (VPP)</strong>, a widely adopted high-performance networking stack across these environments, currently relies on ...
|
| 1/31/26 |
<p>Have you heard about HTTP Archive (HAR) files and wondered how you could leverage this data for deeper insights into your web applications? </p> <p>Imagine analyzing your page load request data as <a href="https://opentelemetry.io/">OpenTelemetry</a> traces in your favorite observability backend. This talk will explore the lessons learned from transforming HAR into an OpenTelemetry trace and streaming it to <a href="https://www.jaegertracing.io/">Jaeger</a>. Learn how to convert HAR data into ...
|
| 1/31/26 |
<p>Suricata is a high performance, open source network analysis and threat detection software used by most private and public organizations, and embedded by major vendors to protect their assets. Suricata provides network protocol, flow, alert, anomaly logs, file extraction and PCAP capture at very high speeds and provides a wide range of deployment options - IDS/IPS/FW/NSM.</p> <p>Suricata 8 is the latest stable edition that has been in development for 2 years, powered by collaborative work of ...
|
| 1/31/26 |
<p>Everyone's building MCP servers for network automation. Your agents can finally talk to each other and share context about your infrastructure. But what context are they actually sharing?</p> <p>If your agent's understanding of the network comes from vector embeddings and RAG, MCP is just helping you share incomplete topology understanding and missed policy dependencies faster. Vector similarity can't represent "which devices are upstream of this link" or "what routing policies affect this ...
|
