-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, In my userspace app, i receive packets from NF_QUEUE. I manage a userspace queue to do some processing over the packets. So i have to set nfq_set_verdict(NF_DROP,.....). Now after the processing i need to send the packets to the destinations. But this time i need to send them such way so that they won't be caught in iptable rules. What i have done for now is, i've set the dscp field of the IP packet . And added a rule $iptables -t mangle -A PREROUTING -m dscp --dscp 10 -j ACCEPT before the rule which queues the packets. Then send the packet over raw socket. May be because of my intensive traffic (Traffic is real time media data, so delays are fatal), the performance of my system is horrible. So i'm thinking how i can achieve a more efficient processing. One thing comes to my mind is the process i'm following for forwarding packet is not very efficient. So i'm thinking about how can i improve this. Thanks in advance. - -- - -aft -----BEGIN PGP SIGNATURE----- Version: OpenPGP.js v0.1 Comment: http://openpgpjs.org wsBcBAEBAgAQBQJPtjhtCRCJVJ6A/SK8awAALMcH/jZdX3CUBl1Z9icSdBEL 94ZSkh7QMO90xw3XRSv6L2e9QsVDrW2WLVIyqsiYoNdgUiwGgko4Q1o0Q49S S0xtYlF4kyXPDNVDZ+Hurdx2Clnyk7J7BhXTPQ/DikMmKjFSSDuM+8wmuE/B sBeM1Df+66eZVqJDKwkuKOubgfHCq3fx/iRFld+vwkDpDqqEZVr+mJwbrbea qWCyohJQUHAXPQvm/yIgay4A4ISqd9IR7lSw41l/uap5ywSm6o5T7h9JLPOe QeWK4oKmNbRgRVXynhmOR7SuiT0RXMQxTeLqCZUw67aLWSspoiDbNFY95c44 gSh3iuZG/wn4iYG0U9n539A= =42Ja -----END PGP SIGNATURE----- -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
