[ovs-discuss] High cpu usage by vswitchd on SYN scan

Andrey Korolyov andrey at xdel.ru
Mon Sep 23 22:57:33 UTC 2013


Hello,

Recently discovered that one of our clients had started portscanning
using some windows utility, bringing ovs-vswitchd to begin packetdrop
in openflow mode at just 300pps to unique addresses, so 300
flows/second was created. For regular legitimate TCP vswitchd may
survive about 10kpps and about 1000 flows/second on my tests so this
seems somehow strange. I am using version 1.7 of userspace utilities,
shoud I upgrade to 1.9+?



More information about the discuss mailing list