[Top] [All Lists]

Re: Best way to hook incoming eth pkts?

To: netdev@xxxxxxxxxxx
Subject: Re: Best way to hook incoming eth pkts?
From: Michael Richardson <mcr@xxxxxxxxxxxxxxxxxxxxxx>
Date: Wed, 20 Aug 2003 13:49:28 -0400
In-reply-to: Your message of "Wed, 20 Aug 2003 11:47:27 EDT." <20030820154727.GB9119@xxxxxxx>
Sender: netdev-bounce@xxxxxxxxxxx

>>>>> "Jeff" == Jeff Garzik <jgarzik@xxxxxxxxx> writes:
    Jeff> Essentially, all the things mentioned above need some way to listen
    Jeff> for incoming ethernet packets.  ATA-over-ethernet has its own
    Jeff> IANA-registered ethernet type, but netconsole and netdump are using
    Jeff> IP/UDP instead of a custom ethernet protocol.

    Jeff> So, two questions for the gurus of the crowd ;-)

    Jeff> 1) What is the best way for an in-kernel piece of software to
    Jeff> receive ethernet packets that are intended for it?

  For ethernet protocols, you can just register the protocol handler, and you
will get them.

    Jeff> 2) Possibly related to #1, is it a good or bad idea to consider
    Jeff> sending netconsole/netdump directly over ethernet, eschewing the
    Jeff> IP/UDP/syslog stuff?

  netconsole makes me really nervous, and I'd rather it was not over IP.
  (If you need a far-away remote console, then get another box with multiple 
serial ports + SSH, or get an Annex, or...)

  Another thing which would like UDP packets is the IPsec NAT-T stuff.
  It is even weirder, because some packets need to be *returned* to the 
UDP socket. (I didn't design this protocol, and argued against putting
the ESP and IKE traffic on the same port, but I lost that argument. I would
have prefered to implement Teredo, and then do IPv4-ESP-IPv6-UDP-IPv4
instead, since it would encourage IPv6)

]      Out and about in Ottawa.    hmmm... beer.                |  firewalls  [
]   Michael Richardson, Sandelman Software Works, Ottawa, ON    |net architect[
] mcr@xxxxxxxxxxxxxxxxxxxxxx |device driver[
] panic("Just another Debian/notebook using, kernel hacking, security guy");  [


Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Finger me for keys - custom hacks make this fully PGP2 compat


<Prev in Thread] Current Thread [Next in Thread>