Firewall Wizards mailing list archives

RE: tests about latency

From: Neale Banks <neale () lowendale com au>
Date: Fri, 12 Sep 2003 14:37:09 +1000 (EST)

On Thu, 4 Sep 2003 TSimons () Delphi-Tech com wrote:

You may want to checkout SmokePing which works off of RRDTool.  It sends 10
pings ever 2 minutes, averages and graphs their response time and loss if
any.


Sounds like a nice tool, thanks for the pointer.  But....

You would setup a host internally with smoke pings against the inside
interface of the PIX, and the router just outside the PIX, then compare the
graphs.


As the latency across the firewall hopefully isn't great, would not the
potential difference between the ping-response time of the firewall and
router be significant?

Surely such a test would be better constructed with two identical,
unloaded hosts - one just inside the FW and one just outside?

Ob FW:  Whilst obviously anything that's not simply routed (e.g. proxied
protocols) would be a completely different kettle of fish, to what extent
could one then reasonably generalise the results obtained from ping tests
(i.e. ICMP packets) to other protocols?

Regards,
Neale.

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

RE: tests about latency TSimons (Sep 05)
- RE: tests about latency Neale Banks (Sep 12)
  - RE: tests about latency Paul Robertson (Sep 12)
    - Large number of packets on TCP/12159 David Vernon (Sep 14)
  - Re: tests about latency Mikael Olsson (Sep 14)
    - Re: tests about latency Christopher Hicks (Sep 14)
- <Possible follow-ups>
- RE: tests about latency Andrea Pasquinucci (Sep 14)