Date: Tue, 3 Apr 2012 20:30:41 +0200 From: =?ISO-8859-1?Q?Ermal_Lu=E7i?= <eri@freebsd.org> To: Gleb Smirnoff <glebius@freebsd.org> Cc: svn-src-head@freebsd.org, svn-src-all@freebsd.org, src-committers@freebsd.org Subject: Re: svn commit: r233846 - head/sys/contrib/pf/net Message-ID: <CAPBZQG1RzqvZjhWcFkQ=zyNvbrx2BPaZEEC8HRKMVk0rRxL4HA@mail.gmail.com> In-Reply-To: <20120403181245.GF13561@FreeBSD.org> References: <201204031809.q33I9LLn062165@svn.freebsd.org> <20120403181245.GF13561@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
You are sure that the defer feature is linked only to active-active? 2012/4/3 Gleb Smirnoff <glebius@freebsd.org>: > On Tue, Apr 03, 2012 at 06:09:21PM +0000, Gleb Smirnoff wrote: > T> Author: glebius > T> Date: Tue Apr =A03 18:09:20 2012 > T> New Revision: 233846 > T> URL: http://svn.freebsd.org/changeset/base/233846 > T> > T> Log: > T> =A0 Since pf 4.5 import pf(4) has a mechanism to defer > T> =A0 forwarding a packet, that creates state, until > T> =A0 pfsync(4) peer acks state addition (or 10 msec > T> =A0 timeout passes). > T> > T> =A0 This is needed for active-active CARP configurations, > T> =A0 which are poorly supported in FreeBSD and arguably > T> =A0 a good idea at all. > T> > T> =A0 Unfortunately by the time of import this feature in > T> =A0 OpenBSD was turned on, and did not have a switch to > T> =A0 turn it off. This leaked to FreeBSD. > T> > T> =A0 This change make it possible to turn this feature > T> =A0 off via ioctl() and turns it off by default. > > Fortunately, we got an unused field in struct pfsyncreq, > so this commit doesn't break ioctl() ABI, and this is > mergeable. > > -- > Totus tuus, Glebius. --=20 Ermal
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAPBZQG1RzqvZjhWcFkQ=zyNvbrx2BPaZEEC8HRKMVk0rRxL4HA>