Re: [lime-dev] BMX features Was: magic icmp

On 05/17/2013 11:13 AM, Gioacchino Mazzurco wrote: hehe, dont be over optimistic. it'll be another end-to-end tunnel between the ip addresses of two bmx6 instances with a reduced MTU for all data traversing this virtual link. Therefore one reason is to react on ICMP MTU exceeded messages which should then trigger bmx6 to reduce the MTU of the related incoming interfaces. Anyway, its just an idea yet and I think it doesnt make sense to discuss such details before a general design of the concept is available. Regarding the other question, why libpcap and not ICMP. Currently the linux kernel silently drops incoming tunnel (ipip) packets unless a corresponding tunnel interface with proper local and remote addresses already exists. But with the automatic bidirectional tunnel setup I want to achieve that these tunnel interfaces would be setup as a reaction on receiving such ipip packets. Libpcap could be used to deliver this packets to the bmx6 process. Bmx6 then creates the needed tunnel interface (with proper local/remote addresses) and pops the packet back into the linux kernel. I dont know any alternative way to easily capture such packets. And another advantage for using libpcap instead of user space RAW sockets is that with libpcap you could already filter for the desired packets in kernel space so that your user space process would not be loaded with all the uniteresting ICMP packets (think of a ping flood). /axel