On Fri, Nov 14, 2003 at 10:49:04AM -0800, John Polstra wrote:
> On 14-Nov-2003 "."@babolo.ru wrote:
> >
> > I remember that VLAN tag has 12 bits :-)
> >
> > I need in system with 5000 .. 1 VLAN
> > interfaces on 2 .. 6 physical ethernets.
>
> Er, so what is your strategy for packing 5000-100
> David Gilbert wrote:
> >
> > > "Brooks" == Brooks Davis <[EMAIL PROTECTED]> writes:
> >
> > >> Why not simply index directly into an array of 4096 pointers?
> > >> Anybody running that many VLANs can afford the extra 16 kB per
> > >> physical interface.
> >
> > Brooks> I suggested the bala
David Gilbert wrote:
>
> > "Brooks" == Brooks Davis <[EMAIL PROTECTED]> writes:
>
> >> Why not simply index directly into an array of 4096 pointers?
> >> Anybody running that many VLANs can afford the extra 16 kB per
> >> physical interface.
>
> Brooks> I suggested the balanced tree because
> "Brooks" == Brooks Davis <[EMAIL PROTECTED]> writes:
>> Why not simply index directly into an array of 4096 pointers?
>> Anybody running that many VLANs can afford the extra 16 kB per
>> physical interface.
Brooks> I suggested the balanced tree because we've got two
Brooks> implementations
On Fri, Nov 14, 2003 at 03:28:47PM -0500, Richard A Steenbergen wrote:
>
> You're a little off on the implementation of the layer 3 switches. They do
> not use "flows" persay, but rather their hardware destination lookups are
> not pre-programmed. This means that when you hit a new destination whi
On Thu, Nov 13, 2003 at 08:51:30AM -0500, Haesu wrote:
>
> Yup, and we use it extensively at the border (Netflow) to do accounting and
> traffic statistics as well. But still, Cisco relies on use of CEF to actually
> route, I believe Netflow is used for accounting purposes now (although back
> in
On Fri, Nov 14, 2003 at 06:22:55PM +0100, Helge Oldach wrote:
> Crist J. Clark:
[snip]
> >> This is actually implemented in most modern VPN
> >> devices. They do NAT translation according to SPI. The alternative is to
> >> encapsulate IPSec traffic in UDP (using port 4500) packets which can be
> >>
>
> Why not simply index directly into an array of 4096 pointers? Anybody
> running that many VLANs can afford the extra 16 kB per physical
> interface.
>
> John
I have wrote such patch for STABLE. On router with ~150 vlans and 50kpps, it
works very well
Mihail
On Fri, Nov 14, 2003 at 10:53:55AM -0800, John Polstra wrote:
> On 14-Nov-2003 Brooks Davis wrote:
> >
> > I think is should work, but performance may be poor. Currently,
> > vlan_input() finds the correct vlan by searching the list of all vlans
> > until it finds the correct one. For that many
On Fri, 14 Nov 2003, 16:02+0200, Jim Xochellis wrote:
> Hi list,
>
> I have also posted this mail to the freebsd-questions list a few days
> ago, but I had no luck. Hence, I decided to try this list too, which
> probably is the most appropriate for my problem.
>
> I need to persuade pppd to call i
On Tue, Nov 11, 2003 at 09:29:49AM +0100, Harti Brandt wrote:
> Here you are. This was even once (about a year ago) reviewed by someone,
> but did make it into the tree, because I did not insist.
Committed with userland API and some fixups. Thanks!
BMS
On Fri, 2003-11-14 at 12:41, Jason Dixon wrote:
> I'm attempting to create a static route for my FreeBSD host so that
> *all* local traffic is routed across the gateway firewall, rather than
> being delivered on the local network segment, as is the default with
> LANs. If you view the routing tab
On 14-Nov-2003 Brooks Davis wrote:
>
> I think is should work, but performance may be poor. Currently,
> vlan_input() finds the correct vlan by searching the list of all vlans
> until it finds the correct one. For that many vlans, it might be
> necessicary to modify the code to use some form of
On 14-Nov-2003 "."@babolo.ru wrote:
>
> I remember that VLAN tag has 12 bits :-)
>
> I need in system with 5000 .. 1 VLAN
> interfaces on 2 .. 6 physical ethernets.
Er, so what is your strategy for packing 5000-1 different values
into a 12-bit field?
> Does anybody has such expienence?
On Fri, Nov 14, 2003 at 01:38:19PM +0300, "."@babolo.ru wrote:
>
> I remember that VLAN tag has 12 bits :-)
>
> I need in system with 5000 .. 1 VLAN
> interfaces on 2 .. 6 physical ethernets.
>
> Does anybody has such expienence?
> Stability? Performance?
I think is should work, but perform
On Fri, 2003-11-14 at 07:38, Vladimir B. Grebenschikov wrote:
> I guess - you already have 192.168.0.0/24 route entry, added by command:
> ifconfig fxp0 192.168.0.53/24
>
> so now you need:
> remove network route via interface:
> route delete 192.168.0.0/24
> add interface route (kernel should k
Crist J. Clark:
>> >ESP packets have this nice SPI field that one could
>> >potentially use to map the traffic between multiple machines behind
>> >NAT to a single VPN end point on the other side, but there is no
>> >practical way for the NAT box to learn the SPI of incoming packets.
>> Certainly t
Sorry I did not. So maybe I should not answer.
By the way, I think that a ng_nat would have quite the same perfomance than
ipnat. Moreover I think that many ng_nat_xxx would be required in order to
support the ALGs:
- ng_nat_ftp
- ng_nat_sip
- ng_nat_h323
- ...
ng_nat would be only the
On Fri, Nov 14, 2003 at 08:10:40AM -0800, Crist J. Clark wrote:
> On Fri, Nov 14, 2003 at 10:35:53AM +0200, Ruslan Ermilov wrote:
> > On Thu, Nov 13, 2003 at 12:24:35PM -0800, Crist J. Clark wrote:
> > > I'm trying to play around with netgraph(4) for the first time and
> > > there seem to be some a
Has anyone implemented NAT as a Netgraph node?
If so, how does performance compare to natd and ipnat?
Regards,
BMS
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED
On Fri, Nov 14, 2003 at 10:22:06AM +0100, Helge Oldach wrote:
> Crist J. Clark:
> >On Thu, Nov 13, 2003 at 12:46:24PM -0500, Vincent Goupil wrote:
> >> I setup a firewall with ipfw2 and natd on freebsd 4.9 release.
> >>
> >> I have mapped my subnet with alias_address
> >> I have mapped 4 private i
On Fri, Nov 14, 2003 at 10:35:53AM +0200, Ruslan Ermilov wrote:
> On Thu, Nov 13, 2003 at 12:24:35PM -0800, Crist J. Clark wrote:
> > I'm trying to play around with netgraph(4) for the first time and
> > there seem to be some aspects of it that haven't "clicked" in my head
> > just yet.
> >
> > Wh
Hi list,
I have also posted this mail to the freebsd-questions list a few days
ago, but I had no luck. Hence, I decided to try this list too, which
probably is the most appropriate for my problem.
I need to persuade pppd to call its ip-up script in order to add a
non-default route as soon as t
В пт, 14.11.2003, в 09:02, Jason Dixon пишет:
> Sorry if this is well-traveled territory, but I haven't found anything
> relevant in the lists, handbook or FAQ.
>
> I have a setup on a network where 802.11b traffic from a group of
> wireless hosts is "reflected" off the internal interface of an Op
I remember that VLAN tag has 12 bits :-)
I need in system with 5000 .. 1 VLAN
interfaces on 2 .. 6 physical ethernets.
Does anybody has such expienence?
Stability? Performance?
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/li
Crist J. Clark:
>On Thu, Nov 13, 2003 at 12:46:24PM -0500, Vincent Goupil wrote:
>> I setup a firewall with ipfw2 and natd on freebsd 4.9 release.
>>
>> I have mapped my subnet with alias_address
>> I have mapped 4 private ip address with 4 public ip address
>>
>> Everything is working fine (web,
On Thu, Nov 13, 2003 at 12:24:35PM -0800, Crist J. Clark wrote:
> I'm trying to play around with netgraph(4) for the first time and
> there seem to be some aspects of it that haven't "clicked" in my head
> just yet.
>
> What I want to do seems like it should be pretty easy. I want to
> send some p
Hi,
I have submitted a port (ports/58728) of mcl (http://www.inrialpes.fr/planete/
people/roca/mcl/mcl.html), an implementation of Reliable Multicast Protocols.
To quote from pkg-descr:
The MCLv3 project is an Open-Source GNU/GPL, multi-platform
implementation of the two major reliable multicast
28 matches
Mail list logo
