Re: [LARTC] rp_filter and fib_validate_source sequence in KPTD

2004-08-11 Thread Julian Anastasov 

Hello,

On Mon, 9 Aug 2004, Martin A. Brown wrote:

 Does it happen before NF_IP_PRE_ROUTING (PREROUTING) or not?

After

 Does it only happen at route selection time?

Yes, input route only

 If I understand the path correctly, the functions are traversed in this
 order (from most deeply nested first):

   fib_validate_source()
   ip_route_input_slow()
   ip_route_input()

   ip_rcv_finish()
   ip_rcv()

The above is correct

 It seems that ip_rcv() (in ip_input.c) calls the following, and I simply
 do not understand what this means:

return NF_HOOK(PF_INET, NF_IP_PRE_ROUTING, skb, dev, NULL,
  ip_rcv_finish);

 I'm guessing that NF_IP_PRE_ROUTING (the PREROUTING hooks) are called
 before ip_rcv_finish is called, which means that the rp_filter action
 doesn't occur until after the PREROUTING hooks.

Yes, routing happens after DNAT (prerouting), so rp_filter
works with translated addresses.

 Is this accurate?  Can anybody shed some light?  Is my interpretation
 accurate?

Yes,

 Thank you very much,

 -Martin

  [0] http://www.ussg.iu.edu/hypermail/linux/kernel/0002.1/1522.html
  [1] http://open-source.arkoon.net/kernel/kernel_net.png

Regards

--
Julian Anastasov [EMAIL PROTECTED]
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

[LARTC] ARP limit ?

2004-08-11 Thread [EMAIL PROTECTED] 
what is the limit on the arp cache entires ?!
Does someone have very big LANs with linux-routers ? How big ? (i mean flat L2 
network, not segmented)

I want to know how much can my net can scale ?

thanx
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Re: [LARTC] Little problem with IMQ

2004-08-11 Thread Lenthir 
Hm... nice patch :)

I'll write if I have some problems.
Now I'm testing :)
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Re: [LARTC] ARP limit ?

2004-08-11 Thread Peter Surda 
On Wed, Aug 11, 2004 at 10:49:23AM +0300, [EMAIL PROTECTED] wrote:
 what is the limit on the arp cache entires ?!  Does someone have very big
 LANs with linux-routers ? How big ? (i mean flat L2 network, not segmented)
It is configurable with /proc/sys/net/ipv4/neigh/default/gc_thresh{1,2,3}. I
don't know what's the exact limit.

 thanx
Bye,

Peter Surda (Shurdeek) [EMAIL PROTECTED], ICQ 10236103, +436505122023

-- 
Where do you think you're going today?
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Re: [LARTC] ARP limit ?

2004-08-11 Thread Nachko Halachev 
In case of big LAN ( more than 512 hosts ) you must  use arpd daemon .

On Wednesday 11 August 2004 10:49, [EMAIL PROTECTED] wrote:
 what is the limit on the arp cache entires ?!
 Does someone have very big LANs with linux-routers ? How big ? (i mean flat
 L2 network, not segmented)

 I want to know how much can my net can scale ?

 thanx
 ___
 LARTC mailing list / [EMAIL PROTECTED]
 http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

-- 
Best Regards,
Nachko Halachev
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Re: [LARTC] Little problem with IMQ

2004-08-11 Thread Lenthir 
OK... I rewrite my script all is OK, but server outgoing traffic can't
match correct class.

I attached my new script. (in develop now :d)


htb1.3en
Description: Binary data

Re: [LARTC] ARP limit ?

2004-08-11 Thread Peter Surda 
On Wed, Aug 11, 2004 at 12:46:09PM +0300, Nachko Halachev wrote:
 In case of big LAN ( more than 512 hosts ) you must  use arpd daemon .
No, you don't have to, see my previous post.

Bye,

Peter Surda (Shurdeek) [EMAIL PROTECTED], ICQ 10236103, +436505122023

-- 
Where do you think you're going today?
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

[LARTC] TC_ACT_PIPE, TC_ACT_STOLEN, TC_ACT_QUEUED, TC_ACT_REPEAT, TC_ACT_JUMP?

2004-08-11 Thread sandr8 
Hi,
please, could somebody quickly explain me the meaning of the
values defined as TC_ACT_PIPE, TC_ACT_STOLEN, TC_ACT_QUEUED,
TC_ACT_REPEAT, TC_ACT_JUMP? they are nearly not used for the moment and
so browsing the source code didn't help me understand what they are
gonna be used for in the future...
Thank you in advance.
Alessandro Salvatori
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Re: [LARTC] netlink api

2004-08-11 Thread Morgan Nelson 
Martin A. Brown wrote:
Perhaps you have not found this yet?
 http://qos.ittc.ukans.edu/netlink/html/
I'm not sure that it answers your questions, but if you haven't run
across this document, it should help some.
-Martin
 

Actually I had found that one, but it is a general overview, similar to 
rfc3549.  They have a touch different information, which complements the 
rfc, but neither are complete nor definitive.

This only makes me more determined to produce a netlink API doc, 
bringing all of the snips of info I can find together into one place.  
The rfc would probably be a good place to start a document like that, 
just fleshing out the detailed information it lacks.  I wonder what kind 
of copyright (etc.) issues that would entail.  The rfc is credited to 
four different authors, from four different companies.  Probably best to 
start from scratch.

Morgan
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/