LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for June 20, 2013

Pencil, Pencil, and Pencil

Dividing the Linux desktop

LWN.net Weekly Edition for June 13, 2013

A report from pgCon 2013

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

LPC: Making the net go faster (Briefly: user-space network queues)

LPC: Making the net go faster (Briefly: user-space network queues)

Posted Sep 15, 2011 17:14 UTC (Thu) by appie (subscriber, #34002)
In reply to: LPC: Making the net go faster (Briefly: user-space network queues) by michaeljt
Parent article: LPC: Making the net go faster

The idea behind network channels is to push (packet) processing out of the kernel towards the application. Over simplified: a direct pipe between incoming packets at the hardware level and the application. Packet processing won't be done by the kernel (again, oversimplified), hence no firewall checks.
Firewalls would have to be implemented in user space, in e.g. a library, every application connecting tot a network channel would need to link to that library and explicitly do it's own firewalling.

Also see: Van Jacobson's network channels

(Log in to post comments)

LPC: Making the net go faster (Briefly: user-space network queues)

Posted Sep 23, 2011 13:26 UTC (Fri) by slashdot (guest, #22014) [Link]

Then put the firewall in the hardware too.

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds