From owner-freebsd-net@FreeBSD.ORG Sun May 25 23:57:27 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2211C37B401; Sun, 25 May 2003 23:57:27 -0700 (PDT) Received: from mwinf0403.wanadoo.fr (smtp5.wanadoo.fr [193.252.22.27]) by mx1.FreeBSD.org (Postfix) with ESMTP id F361343FBD; Sun, 25 May 2003 23:57:25 -0700 (PDT) (envelope-from vjardin@wanadoo.fr) Received: from venus.vincentjardin.net (unknown [80.11.204.203]) by mwinf0403.wanadoo.fr (SMTP Server) with ESMTP id 7E97E5000340; Mon, 26 May 2003 08:57:24 +0200 (CEST) Content-Type: text/plain; charset="iso-8859-1" From: Vincent Jardin To: Marko Zec , hackers@freebsd.org, net@freebsd.org Date: Mon, 26 May 2003 08:57:26 +0200 User-Agent: KMail/1.4.3 References: <3ED14BF3.139CAC32@tel.fer.hr> In-Reply-To: <3ED14BF3.139CAC32@tel.fer.hr> MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Message-Id: <200305260857.26994.vjardin@wanadoo.fr> cc: riccardo.scandariato@polito.it Subject: Re: Network stack cloning / virtualization patches X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 26 May 2003 06:57:27 -0000 Congratulation. Since the last EuroBSD 2002 conference, there are 2 architectures to supp= ort=20 VPNs with FreeBSD : your patch and the Riccardo Scandariato one=20 (http://softeng.polito.it/freebsd/) that is very good too. =46rom a VPN point of view, how could both projects be compared ? Do you think that both projects could be merged or are there too much=20 differences between your two projects ? Regards, Vincent Le Lundi 26 Mai 2003 01:04, Marko Zec a =E9crit : > Hi all, > > at http://www.tel.fer.hr/zec/vimage/ you can find a set of patches > against 4.8-RELEASE kernel that provide support for network stack > cloning. The patched kernel allows multiple fully independent network > stack instances to simultaneously coexist within a single OS kernel, > providing a foundation for supporting diverse new applications, > including: > > - Enhanced virtual hosting (think of jails with its own private set of > network interfaces, IP addresses, routing tables, ipfw and dummynet > instance etc.); > - High-performance real-time network simulation / emulation; > - Fully isolated overlay VPN provisioning (using IP tunnels), including > the possibility of creating nested VPNs. > > The network stacks are embedded in new resource container entities > named "virtual images". Each process and network stack instance within > the system has to be associated with a virtual image, which in effect > becomes a light or pseudo virtual machine entity. Additional goodies > include the possibility to control some other resources besides the > network stack, most notably the independent CPU load and usage > accounting, as well as feedback-driven proportional share scheduling > among virtual images. For more details, check the above URL. > Note that the patch was designed to allow all existing applications and > utilities to run unmodified on the patched kernel, so no recompiling of > the userland is necessary. > Hope you'll find use for the new framework :-) > Cheers, > > Marko > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"