A:
1 Answer
rank
1
|
• (REG) The short answer is no, because this would slow it down (see the monolithic versus microkernel debate for reasons why). The longer answer involves the motivations behind the question. Some people want to inspect every packet, and think it's easier to do in user-space. In fact, the kernel has a network packet filtering API (Linux Socket Filter (LSF), which is an easier-to-use implementation of the Berkeley Packet Filter (BPF)). The LSF allows you to capture some or all packets and pass them to user-space. This yields the advantages of a kernel-based networking stack, but still allows you to inspect packets in user-space if needed. One reason people want to inspect packets is to perform firewalling. In this case, a far superior solution is available, using the Netfilter infrastructure. This is a kernel-level firewalling/NAT solution which is fast and reliable. You may create both stateful and stateless firewalling configurations. This infrastructure was introduced during the 2. ...
more
|
tux.org
3 more sources
-
kernel.org
-
vger.kernel.org
-
be.kernel.org
Related Videos
Add your answer...
Top Related Experts
1.
2.
3.
4.
Top Answerers
1.
2.
3.
Top Askers
1.
2.
3.
Top Supporters
1.
2.
3.
Can we put the networking/TCP stack into user-space?
Related Questions
- MachTen's TCP stack is from the Berkeley Reno sources and includes all the latest protocol improvements, such ...
- • (REG) The best guide may be found in the Linux kernel sources. A popular reference is "TCP/IP Illustrated" ( ...
- Ans. You can use the tools Monitor and TCPCON that list all the sub-options of the stack. From NetWare 6 SP 1 ...
- The TRIM 7 protocol saves some bandwidth on the wire, but most of the savings are really just during ...
- Discussion: The typical TCP/IP protocol stack consists of more than one IP (Internet Protocol) module. Each ...