On Thu, Mar 08, 2007 at 04:43:10PM +0200, Alexandru Dragoi wrote: > Hanno Böck wrote: > >Hi, > > > >wanted to ask if there's information about the status of nf-hipac. I > >couldn't find any patches to up-to-date kernels. > > > >Is there any development happening or is the project considered dead? Are > >there plans to merge stuff with iptables/replace in-kernel stuff with it? > > > > > You can find one for 2.6.17 kernels on google, i think posted in this > list. But i don't really recomend it. On a dual P3 machine, i > experimented random and then almoust total packet drop, and i couldn't > remove the module from kernel, so i rebooted, and never used it again. > That happened a few months ago on a 2.6.17 kernel (with imq). > Huh , I'm pushing about 150Mbit/s on single 3GHz Xeon, and about 100Mbit/s on dual 2Ghz Xeon machine , both have nf-hipac and imq. In my setups I'm not using nf-hipac for some complex firewall, only for simple blacklisting spybots and other network crap. /pch -- Dyslexia bug unpatched since 1977 ... exploit has been leaked to the underground.
