Document detail about how it work?

acassen / xdp-fw

XDP FW: eXpress Data Path FireWall module

GNU General Public License v2.0

24 stars 9 forks source link

Document detail about how it work? #1

Open greatbn opened 4 years ago

greatbn commented 4 years ago

Hi @acassen !

Thank you for your work! I'm trying to follow your repository to implement XDP Firewall.

I tried to install your application, But I think It's not working.

My setup as bellow

 +--------+            +------+
 |   Client            | XDP  |
 |        |            |      |
 +--------+            +------+
    eth0              eth0
192.168.11.11           192.168.11.12

I loaded the XDP program into eth0. And add rule with IP 192.168.11.11. Then I tried to access XDP host from Client. I still reach the XDP host. Can you explain?

acassen commented 4 years ago

Hello,

This is just a PoC code filtering out only VRRP packet based on layer3+vrrp_vrid.

unlike kernel code doesnt use the _user _kernel paradigm.

regs,

acassen commented 4 years ago

An updated and more robust code is part of Keepalived commercial release.