Re: pf for netgraph jails?

+ kp@ A very interesting question. I think that's because, ng_ether(4) intercepts L2 traffic before it hits the firewall. pf(4) can intercept L2 traffic, but I'm not sure that it can then filter it by L3/L4.https://reviews.freebsd.org/D31737 Maybe kp@ will clarify this issue? 31.10.2024, 18:32, "Pa

[Differential] D24937: Add sysctl net.iflib.tx_update_freq to set transmit descriptor update frequency

aleksandr.fedorov_itglobal.com added inline comments. INLINE COMMENTS > iflib.c:2916 > > #define TXD_NOTIFY_COUNT(txq) (((txq)->ift_size / (txq)->ift_update_freq)-1) > static inline qidx_t I am worried that if the user sets the value to 1, then this will lead to division by zero and to kern

[Differential] D19422: if_vxlan(4) Allow set MTU more than 1500 bytes.

aleksandr.fedorov_itglobal.com added a comment. ping? CHANGES SINCE LAST ACTION https://reviews.freebsd.org/D19422/new/ REVISION DETAIL https://reviews.freebsd.org/D19422 EMAIL PREFERENCES https://reviews.freebsd.org/settings/panel/emailpreferences/ To: aleksandr.fedorov_itglobal.com,

[Differential] D19422: if_vxlan(4) Allow set MTU more than 1500 bytes.

aleksandr.fedorov_itglobal.com added a comment. Can anyone commit this patch? CHANGES SINCE LAST ACTION https://reviews.freebsd.org/D19422/new/ REVISION DETAIL https://reviews.freebsd.org/D19422 EMAIL PREFERENCES https://reviews.freebsd.org/settings/panel/emailpreferences/ To: aleksan

[Differential] D19422: if_vxlan(4) Allow set MTU more than 1500 bytes.

aleksandr.fedorov_itglobal.com marked an inline comment as done. CHANGES SINCE LAST ACTION https://reviews.freebsd.org/D19422/new/ REVISION DETAIL https://reviews.freebsd.org/D19422 EMAIL PREFERENCES https://reviews.freebsd.org/settings/panel/emailpreferences/ To: aleksandr.fedorov_itglob

[Differential] D19422: if_vxlan(4) Allow set MTU more than 1500 bytes.

aleksandr.fedorov_itglobal.com updated this revision to Diff 59753. aleksandr.fedorov_itglobal.com added a comment. VXLAN encapsulate ethernet frames within UDP/IP packets. So, we can calculate maximum overhead for IPv4: - IP_MAXPACKET = 65K - constant from netinet/ip.h. - Maximum IP he

[Differential] D19422: if_vxlan(4) Allow set MTU more than 1500 bytes.

aleksandr.fedorov_itglobal.com marked an inline comment as done. CHANGES SINCE LAST ACTION https://reviews.freebsd.org/D19422/new/ REVISION DETAIL https://reviews.freebsd.org/D19422 EMAIL PREFERENCES https://reviews.freebsd.org/settings/panel/emailpreferences/ To: aleksandr.fedorov_itglob

[Differential] D19422: if_vxlan(4) Allow set MTU more than 1500 bytes.

aleksandr.fedorov_itglobal.com updated this revision to Diff 59684. aleksandr.fedorov_itglobal.com edited the test plan for this revision. aleksandr.fedorov_itglobal.com added reviewers: krion, jhb. aleksandr.fedorov_itglobal.com added a comment. This revision now requires review to proceed. I

[Differential] D20824: Fix netmap + vlan panics

aleksandr.fedorov_itglobal.com edited the test plan for this revision. CHANGES SINCE LAST ACTION https://reviews.freebsd.org/D20824/new/ REVISION DETAIL https://reviews.freebsd.org/D20824 EMAIL PREFERENCES https://reviews.freebsd.org/settings/panel/emailpreferences/ To: aleksandr.fedorov_

[Differential] D20824: Fix netmap + vlan panics

aleksandr.fedorov_itglobal.com created this revision. aleksandr.fedorov_itglobal.com added reviewers: vmaffione, jhb, bz. REVISION SUMMARY It is very useful to be able to create virtual networks, such as: VM1 - VALE switch - if_vlan - ix0 -- physical network -- ix0 - if_vlan - VALE switch - VM2

[Differential] D19422: if_vxlan(4) Allow set MTU more than 1500 bytes.

aleksandr.fedorov_itglobal.com created this revision. aleksandr.fedorov_itglobal.com added reviewers: bryanv, hrs, network. Herald added a subscriber: ae. REVISION SUMMARY It seems, there are no reason to prevent setting MTU more than 1500 bytes. MTU greater than 1500 gives a significant incre