about SPI firewall function

[GoogleCodeExporter]

hello guys...
I have a question about firewall...
the PPE supports basic firewall function..
- DDoS avoidance by rate limiting 
- Supports stateful packet filtering (SPI) 

so, Padavan's firewall is hardware-based(PPE) or software-based???

thanks...

Original issue reported on code.google.com by ad...@storaid.tw on 13 Feb 2014 at 1:49

[GoogleCodeExporter]

The 'firewall' is just a few IPTables to block invalid packets and rate 
limiting for the DDOS features.

You can check this out yourself by typing the following in SSH;

iptables -L -v -n

Original comment by c_u_late...@hotmail.com on 13 Feb 2014 at 10:34

[GoogleCodeExporter]

thanks you reply...
so all services in the firewall does NOT related with the PPE??
e.g., URL filter, MAC filter...
the firewall service just use the iptables to check the allowed or blocked 
traffic? right?

If I enabled these services, the H/W ASIC packet processing can be affected???

Original comment by ad...@storaid.tw on 13 Feb 2014 at 10:44