netfilter-devel.vger.kernel.org archive mirror
 help / color / mirror / Atom feed
From: "Łukasz Czyż" <lukasz.czyzz@gmail.com>
To: "Maciej Żenczykowski" <zenczykowski@gmail.com>
Cc: netfilter-devel@vger.kernel.org
Subject: Re: NAT IPv6/IPv4 translator - request for review, plus two questions regarding code
Date: Fri, 16 Mar 2012 20:52:56 +0100	[thread overview]
Message-ID: <CALJVcJHUD=M-PnNAUYo0x8kMmBrt06kEBFXEGM2_5ZnA2ePaBA@mail.gmail.com> (raw)
In-Reply-To: <CAHo-Ooy2Rmu=gwgoAcKfVoYbHfABkJkjK2_MSDu1j7Eq0Sac_g@mail.gmail.com>

>
> I would probably suggest implementing this not as netfilter hooks,
> but rather as a virtual device (tun/tap/veth/dummy like).
>

This exactly how I implemented it in early version of my module. I
changed to netfilter-hook solution, because it seemed to me that
translation process gets faster by doing so. At the other hand
netfilter way generates some additional processing (really small) for
every received packet, even if it is not dedicated to translation - so
it is some kind of trade off.

>
> From the web page it doesn't sound like there's any actual netfilter
> interaction...
>

Yes , as I wrote in my previous message - my module only registers its
functions in netfilter hooks, it doesn't use any other netfilter
functionality.

> Furthermore, I would hazard a guess that requiring an IPv4 address for
> every IPv6 host desiring to connect to an IPv4 address makes
> this a little uninteresting.... to quote:
>

Yes, I agree that it is big constraint, despite that such
configuration can be useful in some environment, when one needs to
have IPv6 host which should be able to reach IPv4 network from static
IPv4 address, reserved to this host only, without port forwarding. It
is similar to one of Cisco NAT translation schemes, called Static NAT.

I am aware that I would have to implement port forwarding option to
make translator more functional. But it is big topic and I do not have
time to code it at this moment. I am just looking for review of my
kernel module.



Lukasz

      reply	other threads:[~2012-03-16 19:52 UTC|newest]

Thread overview: 3+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2012-03-15 18:58 NAT IPv6/IPv4 translator - request for review, plus two questions regarding code Łukasz Czyż
2012-03-16  6:07 ` Maciej Żenczykowski
2012-03-16 19:52   ` Łukasz Czyż [this message]

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to='CALJVcJHUD=M-PnNAUYo0x8kMmBrt06kEBFXEGM2_5ZnA2ePaBA@mail.gmail.com' \
    --to=lukasz.czyzz@gmail.com \
    --cc=netfilter-devel@vger.kernel.org \
    --cc=zenczykowski@gmail.com \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).