[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

High throughput bgp links using gentoo + stipped kernel

Subject: High throughput bgp links using gentoo + stipped kernel
From: andre-nanog at tomt.net (Andre Tomt)
Date: Mon, 20 May 2013 03:01:25 +0200
In-reply-to: <[email protected]>
References: <CAGWRaZb_dHnFHzOZ45M-OkxhbHLjAp=f57fkSkD3fW3FyZP_5g@mail.gmail.com> <[email protected]>

Minor nitpicking I know..

On 20. mai 2013 01:23, Ben wrote:
> With Linux you have to disable reverse path filtering, screw around with iptables
> to do bypass on stateful filtering.

You dont have to "screw around" with iptables. The kernel wont load the 
conntrack modules/code unless you actually try to load stateful 
rulesets*. rp filtering on by default I'd also argue is the better 
default setting, for the 99% of other usecases :-P

With quagga I would tend to agree - but as you I have not used it ages 
and things do change for the better over time -- occasionally.

* you CAN configure your kernel to always load it, but that is silly.

References:
- High throughput bgp links using gentoo + stipped kernel
  - From: symack at gmail.com (Nick Khamis)
- High throughput bgp links using gentoo + stipped kernel
  - From: ben at meh.net.nz (Ben)

Prev by Date: High throughput bgp links using gentoo + stipped kernel
Next by Date: High throughput bgp links using gentoo + stipped kernel
Previous by thread: High throughput bgp links using gentoo + stipped kernel
Next by thread: High throughput bgp links using gentoo + stipped kernel
Index(es):
- Date
- Thread