A small update because you spurred me on:
iperf3 test. The device is set for eth0 WAN into my LAN, so the test is going through the firewall and suricata6 to what it considers "external".
Device is a dual-core MIPS64 (1Ghz / 2000 BogoMIPS) with 1Gb RAM running
25/3/2022 -- 07:11:41 - <Info> - 2 rule files processed. 25035 rules successfully loaded, 0 rules failed
25/3/2022 -- 07:11:45 - <Info> - 25038 signatures processed. 1243 are IP-only rules, 4095 are inspecting packet payload, 19496 inspect application layer, 108 are decoder event only
With suricata6 disabled:
root@OpenWrt:/# iperf3 -c 192.168.200.197 -p 5201 -P2
Connecting to host 192.168.200.197, port 5201
[ 5] local 192.168.200.241 port 44646 connected to 192.168.200.197 port 5201
[ 7] local 192.168.200.241 port 44648 connected to 192.168.200.197 port 5201
[ ID] Interval Transfer Bitrate Retr Cwnd
[ 5] 0.00-1.00 sec 65.2 MBytes 547 Mbits/sec 53 211 KBytes
[ 7] 0.00-1.00 sec 43.0 MBytes 360 Mbits/sec 153 210 KBytes
[SUM] 0.00-1.00 sec 108 MBytes 907 Mbits/sec 206
- - - - - - - - - - - - - - - - - - - - - - - - -
[ 5] 1.00-2.00 sec 54.0 MBytes 453 Mbits/sec 0 211 KBytes
[ 7] 1.00-2.00 sec 53.4 MBytes 447 Mbits/sec 0 210 KBytes
[SUM] 1.00-2.00 sec 107 MBytes 900 Mbits/sec 0
- - - - - - - - - - - - - - - - - - - - - - - - -
[ 5] 2.00-3.00 sec 56.4 MBytes 474 Mbits/sec 0 211 KBytes
[ 7] 2.00-3.00 sec 55.9 MBytes 469 Mbits/sec 0 210 KBytes
[SUM] 2.00-3.00 sec 112 MBytes 943 Mbits/sec 0
- - - - - - - - - - - - - - - - - - - - - - - - -
[ 5] 3.00-4.00 sec 36.7 MBytes 308 Mbits/sec 234 208 KBytes
[ 7] 3.00-4.00 sec 69.0 MBytes 579 Mbits/sec 351 257 KBytes
[SUM] 3.00-4.00 sec 106 MBytes 886 Mbits/sec 585
- - - - - - - - - - - - - - - - - - - - - - - - -
[ 5] 4.00-5.00 sec 55.8 MBytes 468 Mbits/sec 0 221 KBytes
[ 7] 4.00-5.00 sec 56.2 MBytes 471 Mbits/sec 0 257 KBytes
[SUM] 4.00-5.00 sec 112 MBytes 939 Mbits/sec 0
- - - - - - - - - - - - - - - - - - - - - - - - -
[ 5] 5.00-6.00 sec 55.5 MBytes 465 Mbits/sec 0 221 KBytes
[ 7] 5.00-6.00 sec 56.5 MBytes 474 Mbits/sec 0 257 KBytes
[SUM] 5.00-6.00 sec 112 MBytes 939 Mbits/sec 0
- - - - - - - - - - - - - - - - - - - - - - - - -
[ 5] 6.00-7.00 sec 56.2 MBytes 472 Mbits/sec 0 221 KBytes
[ 7] 6.00-7.00 sec 56.1 MBytes 470 Mbits/sec 0 257 KBytes
[SUM] 6.00-7.00 sec 112 MBytes 942 Mbits/sec 0
- - - - - - - - - - - - - - - - - - - - - - - - -
[ 5] 7.00-8.00 sec 53.9 MBytes 452 Mbits/sec 0 221 KBytes
[ 7] 7.00-8.00 sec 53.9 MBytes 452 Mbits/sec 0 257 KBytes
[SUM] 7.00-8.00 sec 108 MBytes 903 Mbits/sec 0
- - - - - - - - - - - - - - - - - - - - - - - - -
[ 5] 8.00-9.00 sec 42.8 MBytes 359 Mbits/sec 126 204 KBytes
[ 7] 8.00-9.00 sec 64.8 MBytes 544 Mbits/sec 228 211 KBytes
[SUM] 8.00-9.00 sec 108 MBytes 903 Mbits/sec 354
- - - - - - - - - - - - - - - - - - - - - - - - -
[ 5] 9.00-10.00 sec 55.9 MBytes 469 Mbits/sec 0 211 KBytes
[ 7] 9.00-10.00 sec 55.6 MBytes 467 Mbits/sec 0 211 KBytes
[SUM] 9.00-10.00 sec 112 MBytes 935 Mbits/sec 0
- - - - - - - - - - - - - - - - - - - - - - - - -
[ ID] Interval Transfer Bitrate Retr
[ 5] 0.00-10.00 sec 532 MBytes 447 Mbits/sec 413 sender
[ 5] 0.00-10.00 sec 531 MBytes 446 Mbits/sec receiver
[ 7] 0.00-10.00 sec 564 MBytes 473 Mbits/sec 732 sender
[ 7] 0.00-10.00 sec 563 MBytes 472 Mbits/sec receiver
[SUM] 0.00-10.00 sec 1.07 GBytes 920 Mbits/sec 1145 sender
[SUM] 0.00-10.00 sec 1.07 GBytes 918 Mbits/sec receiver
iperf Done.
root@OpenWrt:/#
With suricata6 enabled:
@OpenWrt:/# ps -auxw
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.1 1860 1404 ? Ss 04:04 0:05 /sbin/procd
root 2 0.0 0.0 0 0 ? S 04:04 0:00 [kthreadd]
root 3 0.0 0.0 0 0 ? I< 04:04 0:00 [rcu_gp]
root 4 0.0 0.0 0 0 ? I< 04:04 0:00 [rcu_par_gp]
root 8 0.0 0.0 0 0 ? I< 04:04 0:00 [mm_percpu_wq]
root 9 0.0 0.0 0 0 ? S 04:04 0:03 [ksoftirqd/0]
root 10 0.0 0.0 0 0 ? I 04:04 0:01 [rcu_sched]
root 11 0.0 0.0 0 0 ? S 04:04 0:00 [migration/0]
root 12 0.0 0.0 0 0 ? S 04:04 0:00 [cpuhp/0]
root 13 0.0 0.0 0 0 ? S 04:04 0:00 [cpuhp/1]
root 14 0.0 0.0 0 0 ? S 04:04 0:00 [migration/1]
root 15 0.0 0.0 0 0 ? S 04:04 0:00 [ksoftirqd/1]
root 17 0.0 0.0 0 0 ? I< 04:04 0:00 [kworker/1:0H-kblockd]
root 18 0.0 0.0 0 0 ? I< 04:04 0:00 [netns]
root 19 0.0 0.0 0 0 ? I 04:04 0:00 [kworker/u4:1-flush-7:0]
root 170 0.0 0.0 0 0 ? I 04:04 0:00 [kworker/0:2-events]
root 175 0.0 0.0 0 0 ? S 04:04 0:00 [oom_reaper]
root 176 0.0 0.0 0 0 ? I< 04:04 0:00 [writeback]
root 178 0.0 0.0 0 0 ? S 04:04 0:00 [kcompactd0]
root 183 0.0 0.0 0 0 ? I< 04:04 0:00 [pencrypt_serial]
root 185 0.0 0.0 0 0 ? I< 04:04 0:00 [pdecrypt_serial]
root 190 0.0 0.0 0 0 ? I< 04:04 0:00 [kblockd]
root 192 0.0 0.0 0 0 ? I< 04:04 0:00 [blkcg_punt_bio]
root 208 0.0 0.0 0 0 ? I< 04:04 0:00 [edac-poller]
root 219 0.0 0.0 0 0 ? S 04:04 0:00 [watchdogd]
root 242 0.0 0.0 0 0 ? S 04:04 0:00 [kswapd0]
root 348 0.0 0.0 0 0 ? I< 04:04 0:00 [kthrotld]
root 449 0.0 0.0 0 0 ? I 04:04 0:00 [kworker/1:2-events]
root 484 0.0 0.0 0 0 ? I< 04:04 0:00 [ipv6_addrconf]
root 486 0.0 0.0 0 0 ? I< 04:04 0:00 [dsa_ordered]
root 491 0.0 0.0 0 0 ? I< 04:04 0:00 [mmc_complete]
root 494 0.0 0.0 0 0 ? I< 04:04 0:00 [kworker/0:1H-mmc_complete]
root 510 0.0 0.0 0 0 ? I< 04:04 0:00 [kworker/0:2H]
root 581 0.0 0.0 0 0 ? S< 04:04 0:00 [loop0]
root 584 0.0 0.0 0 0 ? S 04:04 0:00 [f2fs_flush-7:0]
root 585 0.0 0.0 0 0 ? S 04:04 0:00 [f2fs_discard-7:]
root 586 0.0 0.0 0 0 ? S 04:04 0:00 [f2fs_gc-7:0]
ubus 635 0.0 0.1 1452 1108 ? S 04:04 0:00 /sbin/ubusd
root 636 0.0 0.1 1628 1328 ttyS0 Ss 04:04 0:00 /bin/ash --login
root 670 0.0 0.0 1192 904 ? S 04:04 0:07 /sbin/urngd
logd 928 0.0 0.0 1432 960 ? S 04:04 0:00 /sbin/logd -S 64
root 980 0.0 0.1 2420 1744 ? S 04:04 0:00 /sbin/rpcd -s /var/run/ubus/ubus.sock -t 30
root 1066 0.0 0.0 0 0 ? I< 04:04 0:00 [kworker/1:2H]
root 1210 0.0 0.1 1272 1008 ? S 04:05 0:00 /usr/sbin/dropbear -F -P /var/run/dropbear.1.pid -p 22 -K 300 -T 3
root 1321 0.0 0.1 2036 1532 ? S 04:05 0:01 /sbin/netifd
root 1377 0.0 0.1 1776 1208 ? S 04:05 0:00 /usr/sbin/odhcpd
root 1530 0.0 0.2 4316 2684 ? S 04:05 0:00 /usr/sbin/uhttpd -f -h /www -r OpenWrt -x /cgi-bin -u /ubus -t 60 -
root 1824 0.0 0.0 0 0 ? I 04:05 0:02 [kworker/0:3-events_power_efficient]
root 2100 0.0 0.1 2828 1340 ? S 04:05 0:00 /sbin/ujail -t 5 -n ntpd -U ntp -G ntp -C /etc/capabilities/ntpd.js
ntp 2117 0.0 0.1 1608 1208 ? S 04:05 0:00 /usr/sbin/ntpd -n -N -S /usr/sbin/ntpd-hotplug -p 0.openwrt.pool.nt
root 2208 0.0 0.0 1220 928 ? S 04:05 0:00 odhcp6c -s /lib/netifd/dhcpv6.script -P0 -t120 eth0
root 2213 0.0 0.0 1608 692 ? S 04:05 0:00 udhcpc -p /var/run/udhcpc-eth0.pid -s /lib/netifd/dhcp.script -f -t
root 2279 0.0 0.1 2828 1328 ? S 04:05 0:00 /sbin/ujail -t 5 -n dnsmasq -u -l -r /bin/ubus -r /etc/TZ -r /etc/d
dnsmasq 2280 0.0 0.1 1656 1272 ? S 04:05 0:00 /usr/sbin/dnsmasq -C /var/etc/dnsmasq.conf.cfg01411c -k -x /var/run
root 13331 0.0 0.0 0 0 ? I 06:55 0:00 [kworker/u4:0-edac-poller]
root 13673 0.0 0.0 0 0 ? I 06:59 0:00 [kworker/1:0]
root 14380 97.5 55.2 560464 534020 ? Sl 07:11 2:24 /usr/bin/suricata -c /etc/suricata/suricata.yaml -s /var/lib/surica
root 14680 0.0 0.1 1896 1128 ttyS0 R+ 07:13 0:00 ps -auxw
root@OpenWrt:/# free
total used free shared buff/cache available
Mem: 965988 551012 265960 41184 149016 316448
Swap: 652040 0 652040
root@OpenWrt:/# iperf3 -c 192.168.200.197 -p 5201 -P2
Connecting to host 192.168.200.197, port 5201
[ 5] local 192.168.200.241 port 44652 connected to 192.168.200.197 port 5201
[ 7] local 192.168.200.241 port 44654 connected to 192.168.200.197 port 5201
[ ID] Interval Transfer Bitrate Retr Cwnd
[ 5] 0.00-1.00 sec 63.2 MBytes 529 Mbits/sec 45 235 KBytes
[ 7] 0.00-1.00 sec 39.4 MBytes 329 Mbits/sec 141 187 KBytes
[SUM] 0.00-1.00 sec 103 MBytes 858 Mbits/sec 186
- - - - - - - - - - - - - - - - - - - - - - - - -
[ 5] 1.00-2.01 sec 51.8 MBytes 433 Mbits/sec 0 235 KBytes
[ 7] 1.00-2.01 sec 50.8 MBytes 424 Mbits/sec 0 212 KBytes
[SUM] 1.00-2.01 sec 102 MBytes 857 Mbits/sec 0
- - - - - - - - - - - - - - - - - - - - - - - - -
[ 5] 2.01-3.00 sec 53.8 MBytes 454 Mbits/sec 0 235 KBytes
[ 7] 2.01-3.00 sec 54.2 MBytes 457 Mbits/sec 0 212 KBytes
[SUM] 2.01-3.00 sec 108 MBytes 911 Mbits/sec 0
- - - - - - - - - - - - - - - - - - - - - - - - -
[ 5] 3.00-4.00 sec 55.2 MBytes 464 Mbits/sec 0 235 KBytes
[ 7] 3.00-4.00 sec 55.7 MBytes 467 Mbits/sec 0 212 KBytes
[SUM] 3.00-4.00 sec 111 MBytes 932 Mbits/sec 0
- - - - - - - - - - - - - - - - - - - - - - - - -
[ 5] 4.00-5.02 sec 51.8 MBytes 428 Mbits/sec 0 235 KBytes
[ 7] 4.00-5.02 sec 49.9 MBytes 411 Mbits/sec 0 212 KBytes
[SUM] 4.00-5.02 sec 102 MBytes 839 Mbits/sec 0
- - - - - - - - - - - - - - - - - - - - - - - - -
[ 5] 5.02-6.02 sec 47.9 MBytes 399 Mbits/sec 0 235 KBytes
[ 7] 5.02-6.02 sec 48.5 MBytes 405 Mbits/sec 0 212 KBytes
[SUM] 5.02-6.02 sec 96.4 MBytes 804 Mbits/sec 0
- - - - - - - - - - - - - - - - - - - - - - - - -
[ 5] 6.02-7.00 sec 53.0 MBytes 455 Mbits/sec 0 235 KBytes
[ 7] 6.02-7.00 sec 52.5 MBytes 451 Mbits/sec 0 212 KBytes
[SUM] 6.02-7.00 sec 106 MBytes 905 Mbits/sec 0
- - - - - - - - - - - - - - - - - - - - - - - - -
[ 5] 7.00-8.02 sec 56.2 MBytes 463 Mbits/sec 0 235 KBytes
[ 7] 7.00-8.02 sec 56.2 MBytes 463 Mbits/sec 0 212 KBytes
[SUM] 7.00-8.02 sec 112 MBytes 927 Mbits/sec 0
- - - - - - - - - - - - - - - - - - - - - - - - -
[ 5] 8.02-9.01 sec 50.0 MBytes 423 Mbits/sec 204 215 KBytes
[ 7] 8.02-9.01 sec 50.4 MBytes 426 Mbits/sec 206 224 KBytes
[SUM] 8.02-9.01 sec 100 MBytes 849 Mbits/sec 410
- - - - - - - - - - - - - - - - - - - - - - - - -
[ 5] 9.01-10.03 sec 51.2 MBytes 421 Mbits/sec 0 215 KBytes
[ 7] 9.01-10.03 sec 51.2 MBytes 421 Mbits/sec 0 224 KBytes
[SUM] 9.01-10.03 sec 102 MBytes 843 Mbits/sec 0
- - - - - - - - - - - - - - - - - - - - - - - - -
[ ID] Interval Transfer Bitrate Retr
[ 5] 0.00-10.03 sec 534 MBytes 447 Mbits/sec 249 sender
[ 5] 0.00-10.03 sec 534 MBytes 447 Mbits/sec receiver
[ 7] 0.00-10.03 sec 509 MBytes 425 Mbits/sec 347 sender
[ 7] 0.00-10.03 sec 509 MBytes 425 Mbits/sec receiver
[SUM] 0.00-10.03 sec 1.02 GBytes 872 Mbits/sec 596 sender
[SUM] 0.00-10.03 sec 1.02 GBytes 872 Mbits/sec receiver
iperf Done.
root@OpenWrt:/#