Re: RFC2385 (MD5 signature in TCP packets) support

David S. Miller (davem@redhat.com)
Fri, 15 Mar 2002 15:57:48 -0800 (PST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: David Schwartz: "Re: RFC2385 (MD5 signature in TCP packets) support"
Previous message: Balbir Singh: "Nice values for kernel modules"
In reply to: Alan Cox: "Re: RFC2385 (MD5 signature in TCP packets) support"
Next in thread: David Schwartz: "Re: RFC2385 (MD5 signature in TCP packets) support"
Next in thread: David Schwartz: "Re: RFC2385 (MD5 signature in TCP packets) support"
Next in thread: David Schwartz: "Re: RFC2385 (MD5 signature in TCP packets) support"
Reply: David Schwartz: "Re: RFC2385 (MD5 signature in TCP packets) support"

From: Alan Cox <alan@lxorguk.ukuu.org.uk>
Date: Sat, 16 Mar 2002 00:12:48 +0000 (GMT)

I've actually got a more constructive suggestion for the zebra folks.
Route the BGP crap through a netlink tap device, mangle and unmangle the
tcp frames in luserspace. Saves doing TCP in userspace, saves screwing up
Dave's nice networking stack.

You'll still need to kill SACK support to make it fit

Another solution could involve a netfilter module to mangle
the packets.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: David Schwartz: "Re: RFC2385 (MD5 signature in TCP packets) support"
Previous message: Balbir Singh: "Nice values for kernel modules"
In reply to: Alan Cox: "Re: RFC2385 (MD5 signature in TCP packets) support"
Next in thread: David Schwartz: "Re: RFC2385 (MD5 signature in TCP packets) support"
Next in thread: David Schwartz: "Re: RFC2385 (MD5 signature in TCP packets) support"
Next in thread: David Schwartz: "Re: RFC2385 (MD5 signature in TCP packets) support"
Reply: David Schwartz: "Re: RFC2385 (MD5 signature in TCP packets) support"