OpenVZ Forum


Home » Mailing lists » Devel » OT: Text/filesystem intefaces to netfilter
OT: Text/filesystem intefaces to netfilter [message #27099] Sat, 09 February 2008 08:52
Enrico Weigelt is currently offline  Enrico Weigelt
Messages: 31
Registered: July 2006
Member
 
Hi folks,


although this is an offtopic, I'd like to rise it here, since
many folks here seem to be involved in netfilter stuff:

What do you think about purely an filesystem/text based interface
to netfilter ? This would remove the trouble of incompatibilities
between kernel and userland, eg. if typesizes don't match
(32bit vs. 64bit) or structures have been extended/changed. 

I had those problems while trying to get OpenVZ run on an given
appliance distro. (not an OpenVZ problem, but with their own
netfilter version). It took me really long time to track down
the actual problem (first suspected an 32/64 bit issue, but 
later found out they've changed some netlink packet structures).

If the whole interface would be just an synthetic filesystem
(maybe directly within sysfs), everything would be *much* easier.
And there would be no such (binary!) dependencies between kernel
and userland.


cu
-- 
---------------------------------------------------------------------
 Enrico Weigelt    ==   metux IT service - http://www.metux.de/
---------------------------------------------------------------------
 Please visit the OpenSource QM Taskforce:
 	http://wiki.metux.de/public/OpenSource_QM_Taskforce
 Patches / Fixes for a lot dozens of packages in dozens of versions:
	http://patches.metux.de/
---------------------------------------------------------------------

Report message to a moderator

Previous Topic: [PATCH] [IPV6]: dst_entry leak in ip4ip6_err.
Next Topic: [PATCH] [IGMP]: Optimize kfree_skb in igmp_rcv.
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ] [ PDF ]

Current Time: Sun Aug 17 21:30:45 GMT 2025

Total time taken to generate the page: 0.19498 seconds
Powered by FUDforum Powered by Virtuozzo Containers