Van Jacobson's network channels
Posted Feb 1, 2006 11:00 UTC (Wed) by james
In reply to: Van Jacobson's network channels
Parent article: Van Jacobson's network channels
Presumably you can do a lot of security when you set up the channels. It looks like the packet classifier:
reads the protocol, ports, and addresses to determine the flow ID and uses this to find a channel
That looks like it's enough for most firewalling: it should give you pass (existing channel), fail (no channel), or needs more work (channel to netfilter).
to post comments)