Re: RFC2385 (MD5 signature in TCP packets) support

Alan Cox (alan@lxorguk.ukuu.org.uk)
Sat, 16 Mar 2002 01:43:05 +0000 (GMT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Mike Fedyk: "Re: unwanted disk access by the kernel?"
Previous message: Mike Fedyk: "Re: HPT370 RAID-1 or Software RAID-1, what's "best"?"

> >Another solution could involve a netfilter module to mangle
> >the packets.
>
> The problem is that this is intended to be used on machines that are routing
> very high volumes of packets on multiple FEs. So the implementation would

Dave's suggestion is netfilter - and netfilter is fast enough I think. You
only need filters on stuff you have already decided is for your IP too.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Mike Fedyk: "Re: unwanted disk access by the kernel?"
Previous message: Mike Fedyk: "Re: HPT370 RAID-1 or Software RAID-1, what's "best"?"