Re: merging forwarding & packet filtering?

To: tech-net%netbsd.org@localhost
Subject: Re: merging forwarding & packet filtering?
From: Darren Reed <darrenr%netbsd.org@localhost>
Date: Sun, 13 Mar 2011 16:03:12 -0700

David Young wrote:

What do people think about gradually merging the packet-forwarding and
packet-filtering functions in the kernel?


Probably the most sensible thing to do is to make it possible for
the inbound filter to return a "hint" about where the kernel should
route the packet and if that hint is null when the kernel gets to doing
the forwarding, then the kernel consults the routing table(s).

Needing or having the firewall do forwarding is ridiculous and a
gross hack. Yes, it works, but that doesn't make it right.

Darren

References:
- merging forwarding & packet filtering?
  - From: David Young

Prev by Date: Re: problems in TCP RTO calculation
Next by Date: Re: problems in TCP RTO calculation
Previous by Thread: Re: merging forwarding & packet filtering?
Next by Thread: Re: merging forwarding & packet filtering?
Indexes:

Home | Main Index | Thread Index | Old Index