> Current hashing in ip_masq_m_tab[IP_MASQ_TAB_SIZE] and
> ip_masq_s_tab[IP_MASQ_TAB_SIZE] is inadequate for virtual server,
{snip}
> I thing it is possible and preferable all masq entries with
> IP_MASQ_F_MPORT flag set to be hashed in ip_masq_hash/ip_masq_unhash
> using daddr and dport as keys:
>
> ip_masq_hash_key(ms->protocol, ms->maddr^ms->daddr, ms->mport^ms->dport)
erm, no. A more flexible and general solution would be to add a
destination lookup table as well as source and masq, and have the
ability to look up by hashing the source address and port from inbound
packets into the destination lookup table.
I had to do this to implement certain features of IPSec masquerade.
-- John Hardin KA7OHZ jhardin@wolfenet.com pgpk -a finger://gonzo.wolfenet.com/jhardin PGP key ID: 0x41EA94F5 PGP key fingerprint: A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76 ----------------------------------------------------------------------- In the Lion the Mighty Lion the Zebra sleeps tonight... Dee de-ee-ee-ee-ee de de de we um umma way! ----------------------------------------------------------------------- 3 days until Crusade: the Babylon Project
- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/