From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-lf0-x244.google.com (mail-lf0-x244.google.com [IPv6:2a00:1450:4010:c07::244]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by lists.bufferbloat.net (Postfix) with ESMTPS id B8EE13B2A0 for ; Thu, 30 Jun 2016 06:27:46 -0400 (EDT) Received: by mail-lf0-x244.google.com with SMTP id a2so7914678lfe.3 for ; Thu, 30 Jun 2016 03:27:46 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=uGWgOZSE8jN3amlWM4zT59A/Vrz12tLtYUJKu+A3C4M=; b=LGoXdL4lu1VfgovyzSepqFZ1mgd6MhKhcoGonKI8umKQ0c7CgCvQ07Kyx2Cm7sd3gf rryKbxzj3usgcEj+U2E1W6XzmpdxD9Mx/EEdLZcAyuSLd+N9H+vslQAyYasZvS5InupB Lv3heK+oeZfOG0khuvkaZvfFJjzMPo5cMf7JNwPfMryFmiN4PQtGYIjEoz9teTAGWlIe KS2rAlw/TRczVuL1MAOXp71Sw2h5tQm1bPzpTRq9kr/7Vs2i+oKwVEEq/NrAa4abEgK0 GdJxeyTpL7ykwU2H1vcERXAEBGAuyzKva9/8h2S2IYToAzda8fap1dvx2fpGLHrDJq8s BDMw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=uGWgOZSE8jN3amlWM4zT59A/Vrz12tLtYUJKu+A3C4M=; b=az0voCmTsGS8JfdNIrUFKs03t3FSOseb75/1LwYKSNKm0kQSNW/2yCl4M4oljAbQQN MEI4rYrNojm8VeXEQPK9DBzGRYDJVE/Klao488e3XVhG9HR1YiYrOFTcjgV/LdNLigVM lDBgd71MbJ/sje8HgbIivFVQjQpVjlttfRbmYm7kJKTNj8lbkKYc0X5rbWl6ssMPJ55R o/bAPY+JyWmxRZ3OW3+AMK3GjGAY76vBAxnnwEMrnOLvk/uIEaERbyAUerbiF8qFfyxk axxUI4c6YqvLRfW9pmY/OrtFWajwKNieF4wPdLpo8FwIoquWuqV1SlD559KBZYO2rI9b ep1A== X-Gm-Message-State: ALyK8tIhjW7ZJWpjAqZQx/kC99qBem4TbBYgKFBllsnDE9N2l1C/IYk0VJL1BlqszTVgUQ== X-Received: by 10.46.1.163 with SMTP id f35mr4073986lji.21.1467282465240; Thu, 30 Jun 2016 03:27:45 -0700 (PDT) Received: from bass.home.chromatix.fi (37-33-96-207.bb.dnainternet.fi. [37.33.96.207]) by smtp.gmail.com with ESMTPSA id k18sm1423727lfg.47.2016.06.30.03.27.43 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Thu, 30 Jun 2016 03:27:44 -0700 (PDT) Content-Type: text/plain; charset=utf-8 Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\)) From: Jonathan Morton In-Reply-To: <5774E766.2050302@darbyshire-bryant.me.uk> Date: Thu, 30 Jun 2016 13:27:40 +0300 Cc: cake@lists.bufferbloat.net Content-Transfer-Encoding: quoted-printable Message-Id: References: <57501404.5010704@darbyshire-bryant.me.uk> <6A7C70EE-906E-4624-A84A-645ED4530A07@gmail.com> <5774E766.2050302@darbyshire-bryant.me.uk> To: Kevin Darbyshire-Bryant X-Mailer: Apple Mail (2.3124) Subject: Re: [Cake] flow dissector idea/enhancement - help X-BeenThere: cake@lists.bufferbloat.net X-Mailman-Version: 2.1.20 Precedence: list List-Id: Cake - FQ_codel the next generation List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 30 Jun 2016 10:27:46 -0000 > On 30 Jun, 2016, at 12:33, Kevin Darbyshire-Bryant = wrote: >=20 > +#ifdef CONFIG_NET_SCH_ESFQ_NFCT > + enum ip_conntrack_info ctinfo; > + struct nf_conn *ct =3D nf_ct_get(skb, &ctinfo); > +#endif Good find. If this actually works the way we want it to, it=E2=80=99ll = make all the host-dependent modes (including triple-isolation) much more = useful on the outer side of a NAT. My main concern is that the conntrack state might not be sorted out = until it hits the firewall or routing logic. I=E2=80=99ll be very = pleased if it happens sooner, or is actually triggered by the query = rather than passing to some specific stage of processing. I have other work to do on the host and flow processing, but I think = that=E2=80=99ll be independent of the hash function, which is where you = want to be looking. - Jonathan Morton