Re: Hurd as router/NAT

To: tb@becket.net (Thomas Bushnell, BSG)
Cc: Marcus Brinkmann <Marcus.Brinkmann@ruhr-uni-bochum.de>, Me <rocketmail_com@rocketmail.com>, debian-hurd@lists.debian.org
Subject: Re: Hurd as router/NAT
From: nisse@lysator.liu.se (Niels Möller)
Date: 12 May 2001 09:31:10 +0200
Message-id: <[🔎] nnheyr81mp.fsf@sture.lysator.liu.se>
In-reply-to: tb@becket.net's message of "11 May 2001 16:21:22 -0700"
References: <[🔎] 20010507184128.9360.qmail@web2903.mail.yahoo.com> <[🔎] 20010507215445.B1900@ulysses.dhis.net> <[🔎] 87heywmpo7.fsf@becket.becket.net> <[🔎] nnpudf93n8.fsf@sture.lysator.liu.se> <[🔎] 873dabo4jx.fsf@becket.becket.net>

tb@becket.net (Thomas Bushnell, BSG) writes:

> The kernel already has a netfilter capacity in Mach.

Could one use that to port something like KLIPS2 (the next version of
the kernel parts of freeswan), which will use the linux-2.4
netfilter-architecture to get into the packet processing at the right
places?

> > Or is it totally out of the question (for performance reasons) to have
> > each packet pass through a few rpc calls?
> 
> Out of the question if it's the normal mode of operation.

I see. With something like linux' netfilter, I think the pfinet
process would check if packet matches the rules for each netfilter
hook, and pass the packet on via rpc if it matches a rule.

Thanks for the help,
/Niels

Reply to:

Follow-Ups:
- Re: Hurd as router/NAT
  - From: tb@becket.net (Thomas Bushnell, BSG)

References:
- Hurd as router/NAT
  - From: Me <rocketmail_com@rocketmail.com>
- Re: Hurd as router/NAT
  - From: Marcus Brinkmann <Marcus.Brinkmann@ruhr-uni-bochum.de>
- Re: Hurd as router/NAT
  - From: tb@becket.net (Thomas Bushnell, BSG)
- Re: Hurd as router/NAT
  - From: nisse@lysator.liu.se (Niels Möller)
- Re: Hurd as router/NAT
  - From: tb@becket.net (Thomas Bushnell, BSG)

Prev by Date: Re: glibc status
Next by Date: More glibc
Previous by thread: Re: Hurd as router/NAT
Next by thread: Re: Hurd as router/NAT
Index(es):
- Date
- Thread