NetFilter
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Netfilter architectural documentation ?

from [mondgrav-netfilter] [Permanent Link][Original]
To: netfilter@lists.netfilter.org
Subject: Netfilter architectural documentation ?
From: <mondgrav-netfilter@yahoo.com>
Date: Mon, 26 Mar 2007 08:56:44 -0700 (PDT)
Cc:
Delivered-to: sp-com-lists@consult.net
Delivered-to: netfilter-list1@securepoint.com
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=X-YMail-OSG:Received:Date:From:Reply-To:Subject:To:Cc:MIME-Version:Content-Type:Content-Transfer-Encoding:Message-ID; b=3t8VR4xwqN4TmyBuA4ZmBuICu/XobepqsGa8ub2MJ9yuSf1k/L1G7zoxSTCmA6RM9XfrpN0t3HhDnNyZfcIkkGTgPrrrqA/V1z/HAgCwUGjuXSG76MUsW624VuJLmyMOShc6JjVcALxcZoAcW44IJmYCOkop64SAQvZ7m1h94qY=;
List-archive: </pipermail/netfilter>
List-help: <mailto:netfilter-request@lists.netfilter.org?subject=help>
List-id: General discussion and user questions <netfilter.lists.netfilter.org>
List-post: <mailto:netfilter@lists.netfilter.org>
List-subscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
List-unsubscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
Reply-to: mondgrav-netfilter@yahoo.com
Sender: netfilter-bounces@lists.netfilter.org 
Is there documentation (other than the source code) of
aspects of the software architecture of netfilter in
the Linux kernel, i.e., whether/when inspected packet
headers are cached for future lookups; when/how the
different hash tables get used, etc.? I understand
iptables, conntrack, networking, and firewalls. I need
to make some performance assessments of iptables
constructs for config files for a high performance
application. E.g., whether there is a performance hit
for using IP range match and multiport range
constructs. I haven't found appropriate documentation.

thank you.
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • Netfilter architectural documentation ?, mondgrav-netfilter <=
Previous by Date:  Re: Long sessions through LVS DR director terminatedbyicmp-host-prohibited (ICMP type 3 code 10), Klaas Jan Wierenga
Next by Date:  Seems to be a problem with Livemeeting or the use of <nop, nop, sack>, Kenneth Foster
Previous by Thread:  Re: Long sessions through LVS DR director terminatedbyicmp-host-prohibited (ICMP type 3 code 10), Klaas Jan Wierenga
Next by Thread:  Seems to be a problem with Livemeeting or the use of <nop, nop, sack>, Kenneth Foster
Indexes:  [Date] [Thread] [Top] [All Lists]