From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from eggs.gnu.org ([2001:4830:134:3::10]:43399) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1ZUmrl-0005QP-1o for qemu-devel@nongnu.org; Wed, 26 Aug 2015 22:24:38 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1ZUmrh-00087g-Tl for qemu-devel@nongnu.org; Wed, 26 Aug 2015 22:24:37 -0400 Received: from [59.151.112.132] (port=30256 helo=heian.cn.fujitsu.com) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1ZUmrh-00087S-HB for qemu-devel@nongnu.org; Wed, 26 Aug 2015 22:24:33 -0400 Message-ID: <55DE74D8.7040707@cn.fujitsu.com> Date: Thu, 27 Aug 2015 10:24:24 +0800 From: Yang Hongyang MIME-Version: 1.0 References: <1440583182-5828-1-git-send-email-yanghy@cn.fujitsu.com> <55DE6265.90009@redhat.com> In-Reply-To: <55DE6265.90009@redhat.com> Content-Type: text/plain; charset="utf-8"; format=flowed Content-Transfer-Encoding: 7bit Subject: Re: [Qemu-devel] [PATCH v8 00/11] Add a netfilter object and netbuffer filter List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: Thomas Huth , qemu-devel@nongnu.org Cc: zhang.zhanghailiang@huawei.com, lizhijian@cn.fujitsu.com, jasowang@redhat.com, mrhines@linux.vnet.ibm.com, stefanha@redhat.com On 08/27/2015 09:05 AM, Thomas Huth wrote: > On 26/08/15 11:59, Yang Hongyang wrote: >> This patch add a new object netfilter, capture all network packets. >> Also implement a netbuffer based on this object. >> the "buffer" netfilter could be used by VM FT solutions like >> MicroCheckpointing, to buffer/release packets. Or to simulate >> packet delay. >> >> You can also get the series from: >> https://github.com/macrosheep/qemu/tree/netfilter-v8 >> >> Usage: >> -netdev tap,id=bn0 >> -netfilter buffer,id=f0,netdev=bn0,chain=in,interval=1000 >> -device e1000,netdev=bn0 >> >> dynamically add/remove netfilters: >> netfilter_add buffer,id=f0,netdev=bn0,chain=in,interval=1000 >> netfilter_del f0 >> >> NOTE: >> interval's scale is microsecond. >> chain is optional, and is one of in|out|all, default is "all". >> "in" means this filter will receive packets sent to the @netdev >> "out" means this filter will receive packets sent from the @netdev >> "all" means this filter will receive packets both sent to/from >> the @netdev >> >> TODO: >> - dump > > FYI, I've now reworked my dump patch series to use your netfilter > infrastructure - worked out fine and it was pretty easy since your > netfilter infrastructure is very usable! I'll polish my patches a little > bit more, then I'll send them out, too. So I am looking forward to see > your netfilter infrastructure included in upstream soon :-) That's great! Thank you! Seems the patchset still needs some work on the QAPI part, I will address it as soon as possiable. > > Thomas > > . > -- Thanks, Yang.