diff options
author | GNU Hurd wiki engine <web-hurd@gnu.org> | 2008-08-18 07:16:58 +0000 |
---|---|---|
committer | GNU Hurd wiki engine <web-hurd@gnu.org> | 2008-08-18 07:16:58 +0000 |
commit | c1c0a2ae49c8213ec8c6b23b44b9c385733a832c (patch) | |
tree | 53e00517826af761c7141dafa5b073a8635fd1ff | |
parent | 0dcb9e9cd44df3ee39b32d5ce1816ca7bb6a9630 (diff) |
web commit by zhengda
-rw-r--r-- | community/da.mdwn | 26 |
1 files changed, 18 insertions, 8 deletions
diff --git a/community/da.mdwn b/community/da.mdwn index 0fef37e0..0a53d129 100644 --- a/community/da.mdwn +++ b/community/da.mdwn @@ -49,12 +49,8 @@ A filter translator is needed to enforce the policies between the interface and ## TODO ### Coding - - give more options in the filter translator to provide the range of IP addresses - - writing the /dev/eth0 translator - - a proxy of the proc server - make subhurds running without root privileges - merge BPF rules from the filter translator and the multiplexer - - add the policy control. for example, a suer's pfinet has to connect to the filter translator instead of to the interface directly. --- @@ -62,13 +58,17 @@ A filter translator is needed to enforce the policies between the interface and ### Coding -pfinet server overriding by modifying glibc. The patch of glibc is [here](http://www.assembla.com/spaces/VNetHurd/documents/aJidqKp6ur3z-Nab7jnrAJ/download/A%20patch%20of%20glibc). +The patch of glibc (pfinet server overriding) is [here](http://www.assembla.com/spaces/VNetHurd/documents/aJidqKp6ur3z-Nab7jnrAJ/download/A%20patch%20of%20glibc). -fix pfinet to use the proper filter rule. The patch of pfinet is [here](http://www.assembla.com/spaces/VNetHurd/documents/dqoQg0qUer3Asvab7jnrAJ/download/A%20patch%20of%20pfinet). +The patch of pfinet (open the virtual network interface) is [here](http://www.assembla.com/spaces/VNetHurd/documents/aWqYwYATKr3BBOab7jnrAJ/download/patch%20of%20pfinet%201%20(to%20use%20the%20virtual%20interface)). -add an option to open the virtual network interface. The patch of boot is [here](http://www.assembla.com/spaces/VNetHurd/documents/cWkeEixHar3AdKab7jnrAJ/download/A%20patch%20of%20boot). +The patch of pfinet (fix pfinet to use the proper filter rule) is [here](http://www.assembla.com/spaces/VNetHurd/documents/besb-qATKr3AIxab7jnrAJ/download/patch%20of%20pfinet%202%20(to%20add%20an%20IP%20filter)). -set the network device into the promiscuous mode. The patch of gnumach is [here](http://www.assembla.com/spaces/VNetHurd/documents/b0eLzUxHmr3ymXab7jnrAJ/download/A%20patch%20of%20gnumach). +The patch of pfinet (set the mach device in the promiscuous mode) is [here](http://www.assembla.com/spaces/VNetHurd/documents/bEovN6ATKr3B8uab7jnrAJ/download/patch%20of%20pfinet%203%20(to%20set%20the%20mach%20device%20into%20the%20promiscuous%20mode)). + +The patch of boot (open the virtual network interface) is [here](http://www.assembla.com/spaces/VNetHurd/documents/cWkeEixHar3AdKab7jnrAJ/download/A%20patch%20of%20boot). + +The patch of gnumach (set the network device into the promiscuous mode) is [here](http://www.assembla.com/spaces/VNetHurd/documents/b0eLzUxHmr3ymXab7jnrAJ/download/A%20patch%20of%20gnumach). the multiplexer: @@ -81,6 +81,16 @@ the filter translator: - Forward the packet between the interface and the pfinet server. - Filter the packet. +the proxy of the proc server: + +- Forward all requests from the process to its proc server. +- The proxy doesn't do any real work except returning the host private port and the master device port of the proxy (shown as an example). + +the devnode translator: + +- Create a device file to help open the network device. + + ### The Code Read - boot |