From owner-freebsd-net@FreeBSD.ORG Tue Oct 27 23:41:55 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3CC4F1065676 for ; Tue, 27 Oct 2009 23:41:55 +0000 (UTC) (envelope-from julian@elischer.org) Received: from outO.internet-mail-service.net (outo.internet-mail-service.net [216.240.47.238]) by mx1.freebsd.org (Postfix) with ESMTP id 260BB8FC0C for ; Tue, 27 Oct 2009 23:41:55 +0000 (UTC) Received: from idiom.com (mx0.idiom.com [216.240.32.160]) by out.internet-mail-service.net (Postfix) with ESMTP id 08DDFAE083; Tue, 27 Oct 2009 16:41:55 -0700 (PDT) X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e Received: from julian-mac.elischer.org (h-67-100-89-137.snfccasy.static.covad.net [67.100.89.137]) by idiom.com (Postfix) with ESMTP id 8A3802D6018; Tue, 27 Oct 2009 16:41:54 -0700 (PDT) Message-ID: <4AE78541.50700@elischer.org> Date: Tue, 27 Oct 2009 16:41:53 -0700 From: Julian Elischer User-Agent: Thunderbird 2.0.0.23 (Macintosh/20090812) MIME-Version: 1.0 To: remodeler References: <20091027225454.M12540@alentogroup.org> In-Reply-To: <20091027225454.M12540@alentogroup.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org Subject: Re: Netgraph question - multiple kernels X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 27 Oct 2009 23:41:55 -0000 remodeler wrote: > My understanding is that I can bind multiple machines running netgraph into > one large netgraph, by using something like ng_ksocket nodes bound with a > tunneling device. you COULD do that, yes, but the two netgraphs are unaware of each other. > > By doing this, is the restriction of one ng_ipfw node per netgraph global to > all of the machines (one, and only one, ng_ipfw node)? no it's one per machine > If the ng_ksocket nodes > are connected to ng_bridges on both of the machines, will only relevant > network traffic cross the link - or all network traffic? ng_bridge does MAC address filtering. it only sends no broadcast packets to teh link where it has seen packets coming from that mac address. > Can I configure the > link between the two machines so that I can directly connect a netgraph node > on one machine to a node on the other, or must they communicate by the > bridge-tunnel-tunnel-bridge structure? You are sending the packet out of one netgraph and into another. how you get the packet there is your business.. you could use two ng_ether nodes and use a dedicated ethernet as a low latency tunnel. > > Thank you. > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"