config help - scaling problem

John Hascall john at iastate.edu
Mon Mar 1 16:11:18 UTC 2010 

Ram disk should help (I assume you've got a plan for
unexpected loss of your RAM disk).  Make sure you have
enough memory that dhcpd is not swapping.

Exploring subclassing seems like good advice.

Another option that might work in your specific
case might be to divide your hosts into N different
sets and service each set on N different servers.

Also, I don't know your budget, but a V240 is
to my mind an overly expensive, overly slow
choice.  We find we get far better bang for
the buck with PC-hardware and a free-unix OS.
YMMV.  (Your corp. politics too).


John
-------------------------------------------------------------------------------
John Hascall, john at iastate.edu
Team Lead, NIADS (Network Infrastructure, Authentication & Directory Services)
IT Services, The Iowa State University of Science and Technology


> Hello list,
> I know there are quite a few helpful and ingenuitive folk who follow this =
> list, and I'm hoping anyone can provide some insight on how I might better =
> optimize my dhcpd.conf and/or system performance. My problem is that today =
> it takes over a minute from when I type dhcpd until the daemon finishes =
> loading into memory and is ready to service DHCP requests.
> =20
> Additionally, when we perform periodic maintenance or upgrades, there are =
> times when we require all clients to DHCP again, since our BRAS builds =
> sessions and maintains state based on the DHCP process. Our Solaris =
> Sun-fire V240 struggles to service anywhere from 1 to 5 DORA / second - =
> with 10 thousand client requests to fulfill, you can see that it takes =
> well over an hour before all clients get serviced.
> =20
> Requirements: The business rules dictate that we provide a static IP to =
> each client, and each client is identified by their unique, controlled and =
> trusted agent.circuid-id inserted by company equipment. MAC is unusable =
> for us due to spoofing concerns.
> =20
> As such, I've so far built my dhcpd.conf like this: <snips>
> =20
> class "10.32.50.115:1-6-15-0-adsl-0-35-615" { match if (option agent.circui=
> t-id =3D "10.32.50.115:1-6-15-0-adsl-0-35-615"); }#Joe Smith 5551212
> =20
> ... #10 thousand more entries like this one ...
> 
> pool { authoritative; allow members of "10.32.50.115:1-6-15-0-adsl-0-35-615=
> "; range ww.xx.yy.zzz; }#Joe Smith 5551212
> ... #10 thousand more entries like this one ...
> =20
> My first question - should I, and maybe could I, be using sub-classes =
> instead of classes? Would that help me any?
> =20
> Next, I modified syslog and added the hyphen so that (I hope) I am doing =
> asynchronous logging to improve performance. Is there anything else I =
> could do to enhance my server performance?
> =20
> I also just implemented a ramdisk to store the dhcpd.conf and dhcpd.leases =
> files, and invoking them with -cf and -lf hoping to improve performance as =
> much as I can.
> =20
> If anyone can see any changes or improvements I can make to better enhance =
> my performance, it'd be greatly appreciated!
> =20
> TIA,
> --Marc
> 
> --=__PartC5EF088E.0__=
> Content-Type: text/html; charset=US-ASCII
> Content-Transfer-Encoding: quoted-printable
> Content-Description: HTML
> 
> <HTML><HEAD>
> <META content=3D"text/html; charset=3Dutf-8" http-equiv=3DContent-Type>
> <META name=3DGENERATOR content=3D"MSHTML 8.00.6001.18812"></HEAD>
> <BODY style=3D"MARGIN: 4px 4px 1px; FONT: 10pt Tahoma">
> <DIV>Hello list,</DIV>
> <DIV>I know there are quite a few helpful and ingenuitive folk who follow =
> this list, and I'm hoping anyone can provide some insight on how I =
> might better optimize my dhcpd.conf and/or system performance. My problem =
> is that today it takes over a minute from when I type dhcpd until the =
> daemon finishes loading into memory and is ready to service DHCP requests.<=
> /DIV>
> <DIV> </DIV>
> <DIV>Additionally, when we perform periodic maintenance or upgrades, there =
> are times when we require all clients to DHCP again, since our BRAS builds =
> sessions and maintains state based on the DHCP process. Our Solaris =
> Sun-fire V240 struggles to service anywhere from 1 to 5 DORA / second - =
> with 10 thousand client requests to fulfill, you can see that it takes =
> well over an hour before all clients get serviced.</DIV>
> <DIV> </DIV>
> <DIV>Requirements: The business rules dictate that we provide a =
> static IP to each client, and each client is identified by their unique, =
> controlled and trusted agent.circuid-id inserted by company equipment. MAC =
> is unusable for us due to spoofing concerns.</DIV>
> <DIV> </DIV>
> <DIV>As such, I've so far built my dhcpd.conf like this: <snips></DIV=
> >
> <DIV> </DIV>
> <DIV>class "10.32.50.115:1-6-15-0-adsl-0-35-615" { match if (option =
> agent.circuit-id =3D "10.32.50.115:1-6-15-0-adsl-0-35-615"); }#Joe Smith =
> 5551212</DIV>
> <DIV> </DIV>
> <DIV>... #10 thousand more entries like this one ...</DIV>
> <DIV><BR>pool { authoritative; allow members of "10.32.50.115:1-6-15-0-adsl=
> -0-35-615"; range ww.xx.yy.zzz; }#Joe Smith 5551212<BR></DIV>
> <DIV>... #10 thousand more entries like this one ...</DIV>
> <DIV> </DIV>
> <DIV>My first question - should I, and maybe could I, be using sub-classes =
> instead of classes? Would that help me any?</DIV>
> <DIV> </DIV>
> <DIV>Next, I modified syslog and added the hyphen so that (I hope) I am =
> doing asynchronous logging to improve performance. Is there anything else =
> I could do to enhance my server performance?</DIV>
> <DIV> </DIV>
> <DIV>I also just implemented a ramdisk to store the dhcpd.conf =
> and dhcpd.leases files, and invoking them with -cf and -lf hoping to =
> improve performance as much as I can.</DIV>
> <DIV> </DIV>
> <DIV>If anyone can see any changes or improvements I can make to better =
> enhance my performance, it'd be greatly appreciated!</DIV>
> <DIV> </DIV>
> <DIV>TIA,</DIV>
> <DIV>--Marc</DIV></BODY></HTML>
> 
> --=__PartC5EF088E.0__=--
> 
> --===============7689193668446139428==
> Content-Type: text/plain; charset="us-ascii"
> MIME-Version: 1.0
> Content-Transfer-Encoding: 7bit
> Content-Disposition: inline
> 
> _______________________________________________
> dhcp-users mailing list
> dhcp-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/dhcp-users
> --===============7689193668446139428==--
>

More information about the dhcp-users mailing list