kernel security and netgraph nodes
From: awrightus (awrightus_at_hotmail.com)
Date: 08/31/04
- Next message: Jean-Yves Avenard: "Route question"
- Previous message: Lowell Gilbert: "Re: Moving DHCP from Netware to FreeBSD"
- Next in thread: talon_at_lpthe.jussieu.fr: "Re: kernel security and netgraph nodes"
- Reply: talon_at_lpthe.jussieu.fr: "Re: kernel security and netgraph nodes"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: 31 Aug 2004 06:37:46 -0700
Running FreeBSD 4.10 stable. I generally run my production systems at
kernel security level of 1. Recently I've found a need to create the
netgraph fec node for interface bonding. Is there a way to compile
all of the netgraph features into the kernel so I don't have to create
the node at runtime? For example, I can run 'ngctl mkpeer fec dummy
fec' at at run time withouot my kernel security level set and it works
fine. But with a kernel security level of 1, I cannot do that. I've
compile all of the NETGRAPH options (from LINT) into the kernel, but
that by itself doesn't seem to do it. Is there some device or
pseudo-device that has to be included into the kernel config file?
How much of the netgraph stuff can be compiled into the kernel or does
it have to be loaded at run time? Thanks.
Steve
- Next message: Jean-Yves Avenard: "Route question"
- Previous message: Lowell Gilbert: "Re: Moving DHCP from Netware to FreeBSD"
- Next in thread: talon_at_lpthe.jussieu.fr: "Re: kernel security and netgraph nodes"
- Reply: talon_at_lpthe.jussieu.fr: "Re: kernel security and netgraph nodes"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
