Netdev 0x18 venue

California, USA

Previous editions

Netdev 0x17 (Vancouver, 2023)

Netdev 0x16 (Lisbon, 2022)

Netdev 0x15 (Virtual, 2021)

Netdev 0x14 (Virtual, 2020)

Netdev 0x13 (Prague, 2019)

Netdev 0x12 (Montréal, 2018)

Netdev 2.2 (Seoul, 2017)

Netdev 2.1 (Montréal, 2017)

Netdev 1.2 (Tokyo, 2016)

Netdev 1.1 (Seville, 2016)

Netdev 0.1 (Ottawa, 2015)

Fosstodon

Netdev Conf

NETDEV VIDEOS

YouTube channel

Session

Tailoring eBPF maps for DDoS Protection

Speakers

Ivan Koveshnikov

Label

Nuts and Bolts

Session Type

Talk

Contents

slides

Description

eBPF maps are powerful enough to express any type of configuration and runtime information for packet processing engines. However, DDoS protection applications may step behind usual usecases, and corner cases of algorithms in the eBPF maps appear more often and strike harder.

Aggressive insertions into maps, exhaustion of preallocated space, and races - typical situations during an incoming DDoS attack. In this talk, we will cover additions that we had to make for the eBPF maps to make them more scalable under attacks and to drop malicious traffic more effectively, and additions that help us monitor situations better and avoid possible degradations.

Recent News

Bronze Sponsor, NVIDIA
[Tue, 09, Jul. 2024]

Bronze Sponsor, Fastly
[Tue, 25, Jun. 2024]

Fireside Chat with Martin Casado
[Wed, 19, Jun. 2024]

Bronze Sponsor, Viasat
[Wed, 05, Jun. 2024]

Bronze Sponsor, secunet
[Mon, 03, Jun. 2024]

Important Dates

Closing of CFS	April 22nd
Notification by	May 21st
Conference dates	July 15th-19th