Synopsis: [socket] [patch] ident only for outgoing connections
Responsible-Changed-From-To: freebsd-bugs->freebsd-net
Responsible-Changed-By: remko
Responsible-Changed-When: Tue Jul 31 07:26:51 UTC 2007
Responsible-Changed-Why:
This sounds more NET related, reassign.
http://www.freebsd.org/cgi/q
On Tue, 31 Jul 2007, Antony Mawer wrote:
Hi,
On 31/07/2007 10:52 AM, Isaac Kohen wrote:
I'm running 6.2-REL. My kernel is compiled with IPSEC, IPSEC_ESP, and
IPSEC_DEBUG. I've installed ipsec-tools 0.6.7.
I've had an openbsd ipsec/vpn gateway for several years that recently died
as a result o
On Sat, Jul 28, 2007 at 12:52:00AM +0200, Markus Oestreicher wrote:
> Gergely CZUCZY schrieb:
> >Good morning,
> >I've noticed 33K interrupts/sec on an em(4) gigabit interface on
> >a box. This many interrupts seemed a bit too high, so I thought
> >I should enable polling(4). After enabling it i've
On Tue, 31 Jul 2007, Bjoern A. Zeeb wrote:
On Tue, 31 Jul 2007, Antony Mawer wrote:
Hi,
On 31/07/2007 10:52 AM, Isaac Kohen wrote:
I'm running 6.2-REL. My kernel is compiled with IPSEC, IPSEC_ESP, and
IPSEC_DEBUG. I've installed ipsec-tools 0.6.7.
I've had an openbsd ipsec/vpn gateway for s
On Mon, Jul 30, 2007 at 08:52:25PM -0400, Isaac Kohen wrote:
> Hello,
Hi.
> I'm running 6.2-REL. My kernel is compiled with IPSEC, IPSEC_ESP, and
> IPSEC_DEBUG. I've installed ipsec-tools 0.6.7.
[.]
> net.key.preferred_oldsa: 0
As Bjoern already said, you may resolve your problems by settin
2007/7/27, Oleg <[EMAIL PROTECTED]>:
>
> Hi All,
>
> I can reproduce this bug easly with tap echo server (attached here), that
> I was small reworked.
>
> steps (almost same):
> (All ip addresses/macs hardcoded in code).
>
> On first machine run echo server, on second add
>
> [EMAIL PROTECTED] rout
Group,
Robert Watson and I have been discussing some of the consequences around not
having Giant picked up in the network stack for mpsafenet=0. One of the
issues that kept coming up was a number of lock ordering issues around divert:
Upon quick inspection I found:
LOR #163 - Locking interactio
Christian S.J. Peron wrote:
Group,
Robert Watson and I have been discussing some of the consequences around not
having Giant picked up in the network stack for mpsafenet=0. One of the
issues that kept coming up was a number of lock ordering issues around divert:
Upon quick inspection I found:
Christian S.J. Peron wrote:
...
One idea was to duplicate the socket options mbuf and pass in a NULL pointer
for the multi-cast options. Keep in mind that these are multicast options
associated with a divert socket.
So I guess the questions:
(1) Are there any users that are specifying multicas
On Tue, Jul 31, 2007 at 07:24:23PM +0100, Bruce M. Simpson wrote:
[..]
>
> The LOR is obviously being triggered by ip_output()'s acquisition of
> in_multi_mtx, due to a datagram being sent to a multicast destination
> and a subsequent lookup being required.
>
This makes sense.
> I can't think
Hi.
Using Jan Dubiec Linux patches I have implemented replacement for the
HiFn's proprietary MPPC compression/decompression library to be used
with ng_mppc netgraph node.
Due to some US patents held by HiFn and their license limitation it is
impossible to include it's sources to the base sys
Christian S.J. Peron wrote:
I can't think of a reason why a user would wish to supply any multicast
socket options to a divert socket, other than the 'small' ones, i.e.
IP_MULTICAST_TTL/IF/LOOP/VIF.
Why would these options ever be set on the divert socket itself though?
To me it would mak
Alexander Motin wrote:
Hi.
Using Jan Dubiec Linux patches I have implemented replacement for the
HiFn's proprietary MPPC compression/decompression library to be used
with ng_mppc netgraph node.
Due to some US patents held by HiFn and their license limitation it is
impossible to include it's
Bruce M. Simpson wrote:
Christian S.J. Peron wrote:
I can't think of a reason why a user would wish to supply any
multicast socket options to a divert socket, other than the 'small'
ones, i.e. IP_MULTICAST_TTL/IF/LOOP/VIF.
Why would these options ever be set on the divert socket itself t
On Tue, Jul 31, 2007 at 04:22:41PM -0700, Julian Elischer wrote:
[..]
>
> Originally we wanted a way to be able to inject any kind of
> ip packet that could be generated, because the aim was to
> allow a user agent to do arbitrary processing on packets. however
> to be really correct, a divert i
Christian S.J. Peron wrote:
On Tue, Jul 31, 2007 at 04:22:41PM -0700, Julian Elischer wrote:
[..]
Originally we wanted a way to be able to inject any kind of
ip packet that could be generated, because the aim was to
allow a user agent to do arbitrary processing on packets. however
to be really
I'd like to create what might be called a "non-bridge" on a FreeBSD machine.
I'd like to put two Ethernet interfaces on the machine which have the same IP
address and subnet, and use those interfaces to communicate with clients.
However, I do not want the clients on one interface to be able to s
Andrew:
I will try it. Can you tell me whether this feature takes the interfaces out of
promiscuous mode (which bridging normally turns on)? Also, will this feature be
MFC'ed into 6-STABLE?
--Brett Glass
At 08:26 PM 7/31/2007, Andrew Thompson wrote:
>Such good timing, such a feature was comm
On Tue, Jul 31, 2007 at 08:19:34PM -0600, Brett Glass wrote:
> I'd like to create what might be called a "non-bridge" on a FreeBSD machine.
> I'd like to put two Ethernet interfaces on the machine which have the same IP
> address and subnet, and use those interfaces to communicate with clients.
Brett Glass wrote:
I'd like to create what might be called a "non-bridge" on a FreeBSD
machine. I'd like to put two Ethernet interfaces on the machine which
have the same IP address and subnet, and use those interfaces to
communicate with clients. However, I do not want the clients on one
interfa
Sam Leffler wrote:
Using Jan Dubiec Linux patches I have implemented replacement for the
HiFn's proprietary MPPC compression/decompression library to be used
with ng_mppc netgraph node.
Did you use the crypto framework? There are patches from hifn to add
support for h/w crypto acceleration t
21 matches
Mail list logo
