Re: [LARTC] rp_filter and fib_validate_source sequence in KPTD
Hello, On Mon, 9 Aug 2004, Martin A. Brown wrote: Does it happen before NF_IP_PRE_ROUTING (PREROUTING) or not? After Does it only happen at route selection time? Yes, input route only If I understand the path correctly, the functions are traversed in this order (from most deeply nested first): fib_validate_source() ip_route_input_slow() ip_route_input() ip_rcv_finish() ip_rcv() The above is correct It seems that ip_rcv() (in ip_input.c) calls the following, and I simply do not understand what this means: return NF_HOOK(PF_INET, NF_IP_PRE_ROUTING, skb, dev, NULL, ip_rcv_finish); I'm guessing that NF_IP_PRE_ROUTING (the PREROUTING hooks) are called before ip_rcv_finish is called, which means that the rp_filter action doesn't occur until after the PREROUTING hooks. Yes, routing happens after DNAT (prerouting), so rp_filter works with translated addresses. Is this accurate? Can anybody shed some light? Is my interpretation accurate? Yes, Thank you very much, -Martin [0] http://www.ussg.iu.edu/hypermail/linux/kernel/0002.1/1522.html [1] http://open-source.arkoon.net/kernel/kernel_net.png Regards -- Julian Anastasov [EMAIL PROTECTED] ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] ARP limit ?
what is the limit on the arp cache entires ?! Does someone have very big LANs with linux-routers ? How big ? (i mean flat L2 network, not segmented) I want to know how much can my net can scale ? thanx ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Little problem with IMQ
Hm... nice patch :) I'll write if I have some problems. Now I'm testing :) ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] ARP limit ?
On Wed, Aug 11, 2004 at 10:49:23AM +0300, [EMAIL PROTECTED] wrote: what is the limit on the arp cache entires ?! Does someone have very big LANs with linux-routers ? How big ? (i mean flat L2 network, not segmented) It is configurable with /proc/sys/net/ipv4/neigh/default/gc_thresh{1,2,3}. I don't know what's the exact limit. thanx Bye, Peter Surda (Shurdeek) [EMAIL PROTECTED], ICQ 10236103, +436505122023 -- Where do you think you're going today? ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] ARP limit ?
In case of big LAN ( more than 512 hosts ) you must use arpd daemon . On Wednesday 11 August 2004 10:49, [EMAIL PROTECTED] wrote: what is the limit on the arp cache entires ?! Does someone have very big LANs with linux-routers ? How big ? (i mean flat L2 network, not segmented) I want to know how much can my net can scale ? thanx ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ -- Best Regards, Nachko Halachev ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Little problem with IMQ
OK... I rewrite my script all is OK, but server outgoing traffic can't match correct class. I attached my new script. (in develop now :d) htb1.3en Description: Binary data
Re: [LARTC] ARP limit ?
On Wed, Aug 11, 2004 at 12:46:09PM +0300, Nachko Halachev wrote: In case of big LAN ( more than 512 hosts ) you must use arpd daemon . No, you don't have to, see my previous post. Bye, Peter Surda (Shurdeek) [EMAIL PROTECTED], ICQ 10236103, +436505122023 -- Where do you think you're going today? ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] TC_ACT_PIPE, TC_ACT_STOLEN, TC_ACT_QUEUED, TC_ACT_REPEAT, TC_ACT_JUMP?
Hi, please, could somebody quickly explain me the meaning of the values defined as TC_ACT_PIPE, TC_ACT_STOLEN, TC_ACT_QUEUED, TC_ACT_REPEAT, TC_ACT_JUMP? they are nearly not used for the moment and so browsing the source code didn't help me understand what they are gonna be used for in the future... Thank you in advance. Alessandro Salvatori ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] netlink api
Martin A. Brown wrote: Perhaps you have not found this yet? http://qos.ittc.ukans.edu/netlink/html/ I'm not sure that it answers your questions, but if you haven't run across this document, it should help some. -Martin Actually I had found that one, but it is a general overview, similar to rfc3549. They have a touch different information, which complements the rfc, but neither are complete nor definitive. This only makes me more determined to produce a netlink API doc, bringing all of the snips of info I can find together into one place. The rfc would probably be a good place to start a document like that, just fleshing out the detailed information it lacks. I wonder what kind of copyright (etc.) issues that would entail. The rfc is credited to four different authors, from four different companies. Probably best to start from scratch. Morgan ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/