最初のページ 戻る 次へ 最後のページ 目次 図
Packet Filter
Development and Maintenance mainly by Netfilter Project
- Only fundermental IPv6 packet filter was available
USAGI Commitment
- 2.6.15: nf_conntrack
- Network protocol independent framework
- 2.6.16-: state module
- Filter by the state of “connection” (w/ iptables 1.3.4-)
- Participation in Netfilter Project core team
Challenges
- IPv4 NAT
- More efficient packet filter system