Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 26 Sep 2005 22:50:05 +0100
From:      Daniel Pocock <daniel@lvdx.com>
To:        freebsd-isp@freebsd.org
Subject:   Re: FreeBSD, quagga (BGP) and 2950 VLANs
Message-ID:  <43386D0D.7000209@lvdx.com>
In-Reply-To: <432F4A12.9090709@mac.com>
References:  <432EC4FF.4030706@lvdx.com> <20050919205757.GI62233@complx.LF.net>	<432F3013.7090001@keystreams.com>	<20050919214618.GJ62233@complx.LF.net>	<20050919215605.GK62233@complx.LF.net> <432F4507.4020708@lvdx.com> <432F4A12.9090709@mac.com>
next in thread | previous in thread | raw e-mail | index | archive | help 

[-- Attachment #1 --]


Chuck Swiger wrote:

> Daniel Pocock wrote:
> [ ... ]
>
>> I'm also curious about whether FreeBSD supports polled rather than 
>> interrupt driven behaviour in the NIC driver - that means that the 
>> system won't keep on re-entering an interrupt handler concurrently 
>> while under load (when a DoS attack is in progress).
>
>
> Indeed it does, see "man polling".
> Make sure you increase HZ to at least 1000...
>
Good news - I got the quagga and vlan stuff working.  Thanks for all 
those who gave tips on this issue.  It was surprisingly easy to get all 
this going and I'm now receiving a full BGP table from an upstream provider.

I'm now starting to look at how to filter packets that I am forwarding, 
to ensure that none of the people I connect to can use me as their 
default route (unless I give them permission to do so).  The FreeBSD 
docs mention three different packet filters - pf, ipfw and ipf.

Does any of these have specific benefits for a routing device that is 
forwarding 99.9% of it's traffic to other hosts, or is it just a 
question of personal preference?  The rules I intend to write are fairly 
simple, and I don't need any state-based stuff.

--------------------------------------
Director
London Voice and Data Exchange Limited
http://www.lvdx.com
--------------------------------------


[-- Attachment #2 --]
0	*H
010	+0	*H
0040
	*H
0b10	UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CA0
050222170146Z
060222170146Z0A10UThawte Freemail Member10	*H
	daniel@lvdx.com0"0
	*H
0
GsȰ9|'@0DA­iKᅙmu\d)prWF퉗(7-&gW0J\PbL
(FN݈1HwLOnڼ&/%=HiH(ΆPOQ+C-T(ߖp[p>2!MߐD}9a.]<TIsagOFƎwBT=Ai0%dz:}޺ĉ3Z^U<},0*0U0daniel@lvdx.com0U00
	*H
.Ø[
`=%2.LX55\X=7yr` ^Bv|9lQ0)=c/`~Ǥ770F+Bj>qRn0d0040
	*H
0b10	UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CA0
050222170146Z
060222170146Z0A10UThawte Freemail Member10	*H
	daniel@lvdx.com0"0
	*H
0
GsȰ9|'@0DA­iKᅙmu\d)prWF퉗(7-&gW0J\PbL
(FN݈1HwLOnڼ&/%=HiH(ΆPOQ+C-T(ߖp[p>2!MߐD}9a.]<TIsagOFƎwBT=Ai0%dz:}޺ĉ3Z^U<},0*0U0daniel@lvdx.com0U00
	*H
.Ø[
`=%2.LX55\X=7yr` ^Bv|9lQ0)=c/`~Ǥ770F+Bj>qRn0d0?0
0
	*H
010	UZA10UWestern Cape10U	Cape Town10U
Thawte Consulting1(0&UCertification Services Division1$0"UThawte Personal Freemail CA1+0)	*H
	personal-freemail@thawte.com0
030717000000Z
130716235959Z0b10	UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CA00
	*H
0Ħ<UsUNʙZhup[v:aQP
0cZ,p+Z?qV˯<6$*+w=+>@dקe*TH<a@dr`00U00CU<0:08642http://crl.thawte.com/ThawtePersonalFreemailCA.crl0U0)U"0 010UPrivateLabel2-1380
	*H
HP.
fgCL!6-6/P p<ab:~t%Pb'qW%ݩ9 Oe_N4[5MwV!x!5$F]_eO1;070i0b10	UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CA0	+0	*H
	1	*H
0	*H
	1
050926215005Z0#	*H
	1=ďJlNA2!S0R	*H
	1E0C0
*H
0*H
0
*H
@0+0
*H
(0x	+71k0i0b10	UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CA0z*H
	1ki0b10	UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CA0
	*H
lWuv&D+/Rth	Cmy	.JS$}s3ʸkjnNͪrzE|'ElW)ѐRšVڪmCv\JîrI":~cPԶp2mK6}Arԟ,](L	!?$`!
ĥ6sXe
٢3ᗩ;WntH=K"{

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?43386D0D.7000209>