Date: Tue, 30 Dec 2003 08:32:53 -0800 From: Michael Sierchio <kudzu@tenebras.com> To: net@FreeBSD.org Subject: Re: Source Routing Message-ID: <3FF1A8B5.30807@tenebras.com> In-Reply-To: <3FF151F3.A5D9EC19@freebsd.org> References: <20031228221511.91095.qmail@web21509.mail.yahoo.com> <20031230081308.GA36953@FreeBSD.org.ua> <3FF151F3.A5D9EC19@freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Andre Oppermann wrote: > Ruslan Ermilov wrote: >>What is missing in ipfw(8) and its ``fwd'' option from being a >>successful implementation of policy routing? > > > In the technical sense it is. For larger systems you want automatic > configuration from a routing daemon. ipfw also has its limits when > it comes to a large number of prefixes which are changing all the > time. A policy or multi-protocol routing daemon can *effect* the desired policy via ipfw. My original notion was to do this via divert sockets, but for appliance devices this requires horsepower which is not available, and involves too much kernel-userland packet copying.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3FF1A8B5.30807>