Date: Sat, 10 Oct 2015 17:31:37 +0800 From: Archy Cho <archycho@gmail.com> To: Jim Thompson <jim@netgate.com> Cc: net@freebsd.org, rizzo@iet.unipi.it Subject: Re: Freebsd 10.2 amd64 netmap ipfw Message-ID: <2ED21620-6B73-4EBB-A532-7152E443B5A9@gmail.com> In-Reply-To: <70A66D48-19E8-4C32-B2A7-5173C82CE3C1@netgate.com> References: <803EEF77-2371-4F1C-9251-0BCB47897879@gmail.com> <70A66D48-19E8-4C32-B2A7-5173C82CE3C1@netgate.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Dear Jim Sorry , maybe my poor english. My freebsd box have 4 interfaces , 2ix and 2igb . I connect ssh via igb0. What I am facing is , I have re-compiled kernel to have netmap.ko , a router box (just static routes ) with ix0 and ix1.=20 I compile the kipfw and run =A1=A7 ./kipfw netmap:ix0 netmap:ix1 =A1=A7 = ,=20 all connection with ix0 and ix1 will getting blocked ,=20 my ipfw rules is only one line =A1=A7 add 65534 pass ip from any to = any=A1=A8 . My question is , do netmap with ipfw could be used for a production = filtering box ? I google around and see someone was working but I could not get full = documents for installation or testing. Thanks for advise. Archy Cho > Jim Thompson <jim@netgate.com> =A9=F3 2015=A6~10=A4=EB10=A4=E9 = =A4W=A4=C81:14 =BCg=B9D=A1G >=20 >=20 >> On Oct 9, 2015, at 7:14 AM, Archy Cho <archycho@gmail.com> wrote: >>=20 >> I think I must misunderstand something , could anyone send me advise? >> Or any documents could help to build a NETMAP IPFW firewall box ? >=20 > See the last several paragraphs of:=20 >=20 > https://github.com/luigirizzo/netmap-ipfw/blob/next/README >=20 > Note that the "telnet localhost 5566" traffic generator hack mentioned = in the README doesn't work without a recompile, but you won't need it = for running real traffic. >=20 > Jim >=20
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?2ED21620-6B73-4EBB-A532-7152E443B5A9>