Date: Fri, 3 Aug 2001 11:28:09 -0700 From: Glen Gross <ggross@symark.com> To: "'Sheldon Hearn'" <sheldonh@starjuice.net>, Brad Huntting <huntting@glarp.com> Cc: Warner Losh <imp@harmony.village.org>, Hajimu UMEMOTO <ume@mahoroba.org>, "kris@obsecurity.org" <kris@obsecurity.org>, "freebsd-current@FreeBSD.ORG" <freebsd-current@FreeBSD.ORG> Subject: !RE: IPSEC/IPSEC_ESP module(s) Message-ID: <01C11C0F.5FFB33B0.ggross@symark.com>
next in thread | raw e-mail | index | archive | help
This gives me the opportunity to ask a question I have been wondering for a while... I've been building kernels with IPSEC support and was unclear what kind of load this puts on the system by default. If IPSEC has hooks into all the networking code, does this become an issue on slow or otherwise heavily loaded hardware? Currently I am running FreeBSD 4.2 [not current] on my NFS server. Is IPSEC desirable in this configuration or not? [I'm behind a firewall.] Also, I can't decide whether to comment out the IPv6 code or not in the kernel configuration file. I would like to support the new protocols, but don't want to unnecessarily burdon the system. My NFS server [on my home network] is working like a champ with only 48 megs of RAM (!). I am using it to mount my home directories. The reason this comes up for me is that someone from SSH Communications recently told me that "IPSEC supports IPv6." Does this mean that if I enable IPSEC in the kernel, I should also make sure to enable the IPv6 code? I would deeply appreciate it if someone could shed some light on this subject for me. Regards, On Friday, August 03, 2001 10:39 AM, Sheldon Hearn [SMTP:sheldonh@starjuice.net] wrote: > > > On Fri, 03 Aug 2001 10:40:24 CST, Brad Huntting wrote: > > > > Have we come to a decision on when we're going to either drop floppy > > > support or consider a different version of GENERIC for the CDROM > > > installation? > > > > Along the lines of droping floppy support: I just managed to setup > > a DHCP/TFTP/NFS diskless boot server that boots the floppy install > > images. Unfortunatly, it did require nfs. > > I take it from all the peripheral postings that the answer to my > questions is "no". :-) > > I wonder how we even begin to decide such a thing. > > By the way, even if floppy support is not discontinued, there's nothing > holding back the development of more flexible non-floppy kernel > arrangements. Perhaps that's the route to take, before we even think > about dropping floppies. > > Ciao, > Sheldon. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-current" in the body of the message Glen M. Gross Unix Technical Support Specialist Symark Software 5716 Corsa Avenue, Suite 200 Westlake Village, CA 91362 http://www.symark.com pp-support@symark.com pb-support@symark.com Main: 800-234-9072 or 818-865-6100 Main fax: 818-889-1894 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?01C11C0F.5FFB33B0.ggross>