Hi hackers,
I've used some time writing a custom natd like daemon which makes som
speciel packet processing.
One of the issues with the natd approach is the large amount of
context-switches it gives.
This can be a real performance problem on very loaded networks. Would it be
possible to do this with netgraph instead. And what is the pro's and con's
for this approach.
As a second step in developement how should protocol verification
(ftp/smtp/whatever) be added to a netgraph firewall approach in a structured
and dynamic extendable way ?
Best regards,
Nicolai Petri
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
