[Gllug] SSL Termination and Reverse Proxy
Karanbir Singh
mail-lists at karan.org
Wed Jun 25 11:03:53 UTC 2008
Stephen Nelson-Smith wrote:
> On Wed, Jun 25, 2008 at 10:27 AM, Anthony Newman
> <anthony.newman at ossified.net> wrote:
>>> Ideas / opinions?
>> Get one of each on evaluation and test it; anything else is conjecture :)
>
> It's a good idea! I'll see what Dell say. My thinking went something
> along these lines:
>
> 1) Most SSL implementations aren't threaded, so performance will be
> directly proportional to number of sockets.
> 2) nginx is threaded, so will benefit from many cores.
> 3)Therefore best compromise is a 2 socket, quad cpu machine, with the
> fastest processors I can afford.
>
> Of course the other option is some kind of hardware crypto
> acceleration board... I know these used to exist... do the still? Any
> idea how much?
>
> S.
on an AMD 2.6Ghz opteron 2216
rsa 1024 bits 0.000722s 0.000037s 1386.0 27362.8
on an intel 2.6Ghz harpertown 5430
rsa 1024 bits 0.001120s 0.000057s 892.7 17496.5
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list