BPFire With XDP #2
Comments
|
@Eykalzz your problem is not the ISO, but your hyper v for some reason has problem with the ISO, try the ISO with real physical server, but I suspect you may hit #1 even if you can install the ISO, I will investigate that issue too. so for now, your best chance to try IPFire DDoS is to use the flash image in Linux KVM hypervisor which is tested working |
|
@Eykalzz I made some progress, I think it could be one of my changes to ipfire causing the ISO installation problem, the upstream ipfire ISO has no such issue after I build the ipfire ISO myself |
okay noted... what estimated time can finish build new iso ? i am waiting for good news |
|
@Eykalzz can you try this iso https://drive.google.com/file/d/1oMRKFPa8--tJfFbE9ZyXMKUBldds6s9q/view?usp=drive_link, no XDP feature yet, but it will tell me if your hyper v support the iso build or not |
can u change to public .. when i want download need request access from u |
|
@Eykalzz I added you access, this is only a test iso, once it is proven good, I will publish as public access https://drive.google.com/file/d/1oMRKFPa8--tJfFbE9ZyXMKUBldds6s9q/view?usp=sharing |
same got problem |
|
ohh okay its work at proxmox ... hyper V got problem .. i try set with public ip later .. now i just try in local ip.. u can try add XDP in this iso see how the result
|
|
ok, so looks for some reason hyper v is not supported by the iso, I wonder why ipfire iso is supported by hyper v. I will release iso with XDP support |
yeahh .. work for proxmox only .. hyper V can't .. u can try add XDP this iso ... how long u can add XDP ? 1 week ? |
|
I don't know, I have about 28 commits required to be added to the iso, to make sure each commit working for the iso, I need to build iso for each commit and each clean iso build takes at least 8 hours on my slow old build machine :). I probably could build iso for 2 or 3 commits to save time, but still it takes time. |
ohh okay .,, i waiting for this .. anything update here sir .. |
|
IPFire with XDP DDoS ISO build is fixed in #1 (comment) |
Nice .. only work for proxmox .. hyper V still can't .. let me try again later .. i update u again |
|
I think there is something else going on with hyper v, I can't think of any of my changes that would cause it fail for hyper v but upstream ipfire doesn't. I also wonder if XDP is supported for hyper v even the installation completes ok, is the guest driver in hyper v supported by XDP ? I don't know about that. I suggest you use proxmox if possible |
its okay brother .. atleast i can use at proxmox .. i need reinstall back my service to proxmox .. thanks for your time .. |
where can i add my port at here ? |
|
what are your ports? these ports are pre-defined here you can modify tcp_ports file with your ports, then the WebUI will show your ports, I did not add feature in WebUI to add port to reduce the WebUI code complex, if you are not comfortable manually editing /var/ipfire/ddos/tcp_ports, you can tell me your ports and I can edit for you, it is always good to have some basic linux command line skills so you do not rely on WebUI always :), also make sure the tcp_ports file permission is |
some game different port .. can u teach me how to add port ?
|
|
no, you don't execute /var/ipfire/ddos/tcp_ports file, you need to use file editor program like vim editor to change the content of /var/ipfire/ddos/tcp_ports, for example |
To many bro huhuhu ROW Port TCP 10101 RYL2 TCP Port RYL1 TCP |
|
can you reduce the number of tcp port? right now the XDP code program max port number is 8, I could change the max port number in the code, but it requires recompile the XDP program code and rebuild the iso, also now UDP is not supported, need to add UDP support. |
|
i see ..so 8 port for 1 iso right ?? 80 Web HTTP 10408 UDP if u can add UDP function its very nice .. if cant just skip this port if can add udp .. u can remove port 80 |
|
ok now you can login your ipfire and run command below (copy and paste at the command line and enter) |
thanks brother .. i test later .. now i just test in offline pc ... later i test at my dedicated server .. thank you so much .. |
|
@Eykalzz just check in to see if you run into any issue :) |
Hi bro .. for now everything okay .. i dont have try udp for now .. i just try tcp first .. |
|
have you put it into production use already for tcp? |
Yes, I did. now my game has running with xdp ip fire |
|
this is great news, you are the first BPFire/IPFire user with XDP in production use. you run it in windows hyper v? if so, can you share command output like |
sure .. here i share pictures
|
|
ok, it is XDP generic mode, looks hyper v virtual nic is not natively supported by XDP, but it is fine, no problem |
|
This screenshot from proxmox .. if hyper V i send u later .. now i outside
home
|
|
if I understand proxmox correct, proxmox should use virtual nic virtio driver that should be natively supported by XDP, when you get time, you can run |
like this ?? this is proxmox |
hyper V ,, got problem at hyper V ? |
@Eykalzz sorry missed your note, Intel 82540em might be old enough that is not supported by native XDP but generic XDP, maybe it depends on how you provisioned proxmox, for better performance, you can choose virtio type network from proxmox, I see someone asked similar question in proxmox forum https://forum.proxmox.com/threads/e1000-vs-virtio.80553/, I think you can try the virtio type network from proxmox, that would be supported natively by XDP for better performance. |
it seems |
how to do this |
[root@Eykalzz ddos]# lspci -vvv 00:01.0 ISA bridge: Intel Corporation 82371SB PIIX3 ISA [Natoma/Triton II] 00:01.1 IDE interface: Intel Corporation 82371SB PIIX3 IDE [Natoma/Triton II] (p rog-if 80 [ISA Compatibility mode-only controller, supports bus mastering]) 00:01.2 USB controller: Intel Corporation 82371SB PIIX3 USB [Natoma/Triton II] ( rev 01) (prog-if 00 [UHCI]) 00:01.3 Bridge: Intel Corporation 82371AB/EB/MB PIIX4 ACPI (rev 03) 00:02.0 VGA compatible controller: Device 1234:1111 (rev 02) (prog-if 00 [VGA co ntroller]) 00:03.0 Unclassified device [00ff]: Red Hat, Inc. Virtio memory balloon 00:05.0 PCI bridge: Red Hat, Inc. QEMU PCI-PCI bridge (prog-if 00 [Normal decode ]) 00:12.0 Ethernet controller: Red Hat, Inc. Virtio network device 00:13.0 Ethernet controller: Red Hat, Inc. Virtio network device 00:1e.0 PCI bridge: Red Hat, Inc. QEMU PCI-PCI bridge (prog-if 00 [Normal decode ]) 00:1f.0 PCI bridge: Red Hat, Inc. QEMU PCI-PCI bridge (prog-if 00 [Normal decode ]) 01:01.0 SCSI storage controller: Red Hat, Inc. Virtio SCSI [root@Eykalzz ddos]# |
|
@Eykalzz is above I am not familiar with proxmox, I think there should be option in proxmox when you provision the guest to specify network type to be also by the way, I have added load balancer feature to BPFire, so you can run mulitiple game servers with same game server services, and setup load balancer on BPFire to load balance game services to multiple game server, if one of your game server goes down or need maintenance, you still have other game server to serve, see a quick demo here https://youtu.be/80jumLkhDWo?si=ZisD7p7SSPUPrb_E |
what command for i add load balancer .. can help me |
|
@Eykalzz here is the loxicmd to create load balancer, I could add WebUI feature in future https://loxilb-io.github.io/loxilbdocs/cmd/#how-to-run-and-configure-loxilb |
|
@Eykalzz just follow-up with your XDP SYNProxy deployment, is it still running ok? |
|
bp fire now got new update ? where can i download latest version?
|
|
@Eykalzz a lot of feature has been added, here is the download link https://drive.google.com/drive/folders/1HPJTWP6wi5gPd5gyiiKvIhWipqguptzZ?usp=drive_link, feel free to reach out to me if you have problem |
|
@Eykalzz I also relocated the download server to singapore, when you got chance, could you try to download ISO from here https://bpfire.net/download/ |
|
@Eykalzz are you able to try the new BPFire? another user tried it and it is working great for them |
Can protect udp ? |
- Update from version 0.6.1-f54b3fa to 0.6.3
- Update of rootfile not required
- Changelog
0.6.3
* remove outdated copyright and email
* Merge pull request #25 from fweimer/patch-1 AC_QEF_C_NORETURN: Include
<stdlib.h> for exit
* Merge pull request #27 from ofalk/master Fix potential write to unallocated
memory.
* Merge pull request #28 from vgropp/#2-fix-csv-bits feat: #2 output bits in csv
* Merge pull request #29 from vgropp/#2-fix-csv-bits fix(doc): #2 output bits
in csv
* Merge pull request #32 from vgropp/new-netstat-#5 feat: add support for
newer (2016+) linux netstat #5
0.6.2
* Merge pull request #22 from vgropp/issue-#13 to fix windows build
* Merge pull request #20 from dreibh/master CSV file output: fix for timestamp
inaccuracy and Y-2038 problem
* Merge pull request #21 from vgropp/travisci add travisci
* Merge pull request #17 from Himura2la/master Add the started time in "sum" mode
* Merge pull request #18 from Himura2la/fix-dynamic Fix DYNAMIC and ANSIOUT in
config
* Merge pull request #10 from SoapGentoo/fixes Use `static inline` instead of
`inline`
* Merge pull request #9 from adventureloop/master Always fflush the pipe
* Merge pull request #7 from samueloph/fsf_address_clean Update FSF address
* Merge pull request #6 from samueloph/master Fix typos
* fix nan and inf values on fast refresh (fixes debian bug #532331
Signed-off-by: Adolf Belka <[email protected]>
Signed-off-by: Michael Tremer <[email protected]>
anyone have ipfire iso with xdp ?
The text was updated successfully, but these errors were encountered: