Date: Wed, 22 Feb 2012 22:31:36 +0000 From: "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net> To: Alexander Leidinger <Alexander@Leidinger.net> Cc: stable@FreeBSD.org, current@FreeBSD.org Subject: Re: [CFT] modular kernel config Message-ID: <BA7FFA2D-DEE6-4FB7-AE26-0BC79CBFD8C0@lists.zabbadoz.net> In-Reply-To: <20120221143537.Horde.deyFDZjmRSRPQ52pxBIpnLA@webmail.leidinger.net>
index | next in thread | previous in thread | raw e-mail
On 21. Feb 2012, at 13:35 , Alexander Leidinger wrote: > You can download from > http://www.Leidinger.net/FreeBSD/current-patches/ > The files are > - i386_SMALL > - i386_SMALL_loader.conf > - amd64_SMALL > - amd64_SMALL_loader.conf I only looked at the laoder.conf for amd64 and the only comment I have is that I do not have the time to wait minutes for all individual modules to be loaded. This is going to be really bad for boot time. > The new stuff in the kernel config compared to GENERIC is (in order of number of requests from users): > - IPSEC (+ device enc + IPSEC_NAT_T) You cannot ship that on by default for non-tecnical reasons in a kernel. Please do not commit a kernel config that can be booted (no LINT cannot be booted) with these on without consulting appropriate hats upfront. > - ALTQ > - SW_WATCHDOG > - QUOTA > - IPSTEALTH (disabled in loader.conf) > - IPFIREWALL_FORWARD (touches every packet, power users which need > a bigger PPS but not this feature can recompile the kernel, > discussed with julian@) > - FLOWTABLE (disabled in loader.conf) Which is not the same as it's not 100% disabled and will still allocate memory. -- Bjoern A. Zeeb You have to have visions! It does not matter how good you are. It matters what good you do!home | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?BA7FFA2D-DEE6-4FB7-AE26-0BC79CBFD8C0>