LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

(Nearly) full tickless operation in 3.10

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Kernel Summit: Security

Kernel Summit: Security

Posted Jul 22, 2004 15:41 UTC (Thu) by stock (guest, #5849)
Parent article: Kernel Summit: Security

"Labeled networking" is another wishlist item; it would allow packets to be marked on entry to a network and handled according to those labels.

Ain't that a feature which is already _INSIDE_ the IP protocol definition??

Robert

(Log in to post comments)

Labeled Networking: Reserved vs. Implemented

Posted Jul 22, 2004 18:31 UTC (Thu) by AnswerGuy (guest, #1256) [Link]

I think there are fields in the IP header which are reserved for this, but very few TCP/IP stacks support any use of that field.

Implementing support for this in Linux would seem to be a simple matter of coding up the appropriate netfilter modules and adding support to iptables, the iproute2 package or other utilities to set kernel policies regarding these labels.

I'm curious what the intended application would be.

JimD

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds