[Bro] dpdk
Jan Grashöfer
jan.grashoefer at gmail.com
Mon Apr 10 02:26:37 PDT 2017
Hi Ed,
thanks a lot for your detailed explanation!
> I believe there would be some benefits in the ability to run high-speed
> packet capture in VMs or Containers that are hosted on a cloud management
> system (CMS). The world of NFV and service function chaining (which
> encompasses IDSs such as Bro) often relies on DPDK applications.
With virtualization in mind, using DPDK for packet acquisition seems to
make sense.
> I don't know that these benefits are enough to justify the amount of
> development work it would take to implement and maintain a DPDK packet
> acquisition plugin. Just throwing out an answer to the question. :-)
At least it is worth a POC I think :)
Jan
More information about the Bro
mailing list