Date: Sat, 10 Oct 2015 17:31:37 +0800 From: Archy Cho <archycho@gmail.com> To: Jim Thompson <jim@netgate.com> Cc: net@freebsd.org, rizzo@iet.unipi.it Subject: Re: Freebsd 10.2 amd64 netmap ipfw Message-ID: <2ED21620-6B73-4EBB-A532-7152E443B5A9@gmail.com> In-Reply-To: <70A66D48-19E8-4C32-B2A7-5173C82CE3C1@netgate.com> References: <803EEF77-2371-4F1C-9251-0BCB47897879@gmail.com> <70A66D48-19E8-4C32-B2A7-5173C82CE3C1@netgate.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Dear Jim Sorry , maybe my poor english. My freebsd box have 4 interfaces , 2ix and 2igb . I connect ssh via igb0. What I am facing is , I have re-compiled kernel to have netmap.ko , a router box (just static routes ) with ix0 and ix1. I compile the kipfw and run “ ./kipfw netmap:ix0 netmap:ix1 “ , all connection with ix0 and ix1 will getting blocked , my ipfw rules is only one line “ add 65534 pass ip from any to any” . My question is , do netmap with ipfw could be used for a production filtering box ? I google around and see someone was working but I could not get full documents for installation or testing. Thanks for advise. Archy Cho > Jim Thompson <jim@netgate.com> 於 2015年10月10日 上午1:14 寫道: > > >> On Oct 9, 2015, at 7:14 AM, Archy Cho <archycho@gmail.com> wrote: >> >> I think I must misunderstand something , could anyone send me advise? >> Or any documents could help to build a NETMAP IPFW firewall box ? > > See the last several paragraphs of: > > https://github.com/luigirizzo/netmap-ipfw/blob/next/README > > Note that the "telnet localhost 5566" traffic generator hack mentioned in the README doesn't work without a recompile, but you won't need it for running real traffic. > > Jim >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?2ED21620-6B73-4EBB-A532-7152E443B5A9>