Not logged in
Log in now
Create an account
Subscribe to LWN
Deadline scheduling: coming soon?
LWN.net Weekly Edition for November 27, 2013
ACPI for ARM?
LWN.net Weekly Edition for November 21, 2013
GNU virtual private Ethernet
Why let Netfilter rule how the network code should look like? The number of Linux boxes running as firewalls / filtering routers must be very small compared to the number of server and desktop systems out there.
Reconsidering network channels
Posted Jul 27, 2006 13:48 UTC (Thu) by cventers (subscriber, #31465)
But netfilter is a _long_ way from obscure; particularly, think of all of
the SOHO routers out there and you end up counting a _lot_ of netfilter
But offer a "fast path?"
Posted Jul 27, 2006 17:32 UTC (Thu) by AnswerGuy (guest, #1256)
Many systems are dedicated to very narrow purposes (and put into an
infrastructure which guarantees that only certain classes of packets will
reach them. (Think of systems arrayed behind a load-balancer).
In those cases it might be appropriate to have a netchannels option to offer the fastest processing of that traffic. Essentially the "classifier" has been scaled out to a different system entirely (the load balancer).
Posted Jul 28, 2006 18:39 UTC (Fri) by PlaguedByPenguins (subscriber, #3577)
as people in netdev mentioned (more in the RDMA threads than netchannels), nobody in their right mind would ever dream of using netfilter on their sub 10microsecond cluster interconnects.
so users are already split into two camps - those who want to use fast hardware, and those with gigE and slower who might want to do routing and netfiltering. as low latency hardware like Infiniband and Myrinet goes more mainstream this split will become more evident.
if netchannels can only be architected so that it's usefully fast when netfilter isn't required then that's more than fine for the whole class of users who already turn off netfilter. it can go into the kernel so that netchannels only appears when netfilter is off, and people who care about performance (like me) would probably use it.
anybody who turns off netfilter in the .config already knows what they are doing and what they are losing when they do it.
as netfilter already can be turned off it follows that you should be able to write drivers and infrastructure that only works when netfilter is off. I don't see a problem with this... ???
Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds