80 Gbps Deep Packet Inspection Hardware Announced 185
An anonymous reader writes to tell us that Procera Networks is launching a new weapon on the deep packet inspection (DPI) front. At $800,000 these 80 Gbps tanks aren't going to be sitting in everyone's closet, but it could mean that more traffic shaping is on the way. "The PL10000 can handle up to 5 million subscribers and can track 48 million real-time data flows. That's certainly a potent piece of hardware, but larger ISPs will need more. That's why Procera designed the new machines with full support for synchronizing traffic flows where return traffic might be routed to a different PacketLogic machine. The machine receiving the return traffic can make the machine monitoring the outbound traffic aware that it sees the other half of a TCP/IP conversation, for example, giving the devices more accuracy than those which might only have access to one side."
DPI - Encrypt (Score:5, Interesting)
Let the encryption wars commence. (Score:1, Interesting)
I also think that stronger net privacy laws won't be enough to really stop it, since it's not just our government (Or indeed, not just governments in general,) that'll be using these.
?? subscribers @ 80gbps (Score:2, Interesting)
Welcome to Comcast - our new TOS allows you to view text-only web pages with your *high speed* internet connection!
I've decided: this is evil. (Score:5, Interesting)
in general, it was setup to pass packets and ideally to keep them in the same order and not drop them. beyond that, the upper layers (tcp and udp) did any higher level functions.
this worked! for the longest (damned) time, it worked.
and now, ISPs (and large networks) are starting to try to break out the 'cable is a bunch of bits' into discrete 'services' and then try to re-order things, drop things, queue them differently or somehow treat things non-uniformly.
I think this is Evil(tm).
I've been in the networking field for a few decades (really) and I've seen traffic shaping (what a euphemism, btw!) try to argue its case over and over again. but I keep getting back to the basic design principles of ethernet (csma-c/d) and tcp/udp-ip and when you have large enough pipes, you don't NEED a 'fast lane' or diamond lane, so to speak. it just mucks up the works, makes things harder to design and manage and really isn't helpful since you still need large pipes and all the shaping in the world won't CURE that, it only DEFERs things. that's not a cure.
data should be 'opaque' and first-come first-served. equal access. standard layer (phys, dl, network) rules should still apply.
ISPs who employ shaping are simply RIPPING OFF customers from their rightful bandwidth and also passing along the COST of the packet snooping hardware to us, the users. (don't think they'll just spring for the hardware on their own; they'll pass the costs of this stuff to us, to be sure).
I think its evil. once you look at it from enough angles, you see that its not at all a good thing.
Re:DPI - Encrypt (Score:4, Interesting)
Re:Will be obsolete... (Score:5, Interesting)
Re:I've decided: this is evil. (Score:3, Interesting)
DPI is not evil so long as it is used to make the network better as a whole. As with anything it can be bent to the will of evil, but I disagree with that completely. I believe in certain forms of limiting so long as it doesn't degrade the internet experience as a whole.
And yes, I consider myself a backer of net neutrality. All I can say is, I am a realist.
Re:DPI - Encrypt (Score:2, Interesting)
It's a bit beside the point though. A sane approach to DPI is just to give some traffic a lower priority than other traffic. If the pipe goes full, you don't want to RED drop some WoW traffic (unhappy user) over some BT traffic (decidedly non-interactive). You might also want to keep web browsing at a better priority than bulk HTTP transfers and P2P, whatnot.
Re:$800,000? (Score:5, Interesting)
Re:$800,000? (Score:4, Interesting)
Re:Lots of Issues (Score:3, Interesting)
Of course it can be used for good or evil. But the fact of the matter is that DPI is in the mix as one approach to provide QoS for real time internet applications like streaming video and audio that don't play well with the 'best effort' delivery paradigm that packet switched networks are really designed to provide.
If you really want network neutrality for every packet, fine. But be aware that right now time sensitive traffic types like VOIP are being prioritized, and network neutrality will degrade performance for some applications.