[Devel] Re: [PATCH 0/6] netns: add linux-vrf features via network namespaces
Serge E. Hallyn
serue at us.ibm.com
Thu Oct 30 08:03:04 PDT 2008
Quoting Andreas B Aaen (andreas.aaen at tietoenator.com):
> Hi,
>
> On Thursday 30 October 2008 14:05, Vivien Chappelier wrote:
> > The recently introduced network namespaces allow separate standalone
> > network stacks to coexist on the same machine. This is a very useful
> > functionality that we have been needing and using in our products for
> > some time, through the VRF ptchset (http://linux-vrf.sourceforge.net/).
> > The goal of the VRF patchset and network namespaces are very similar,
> > yet some features of the VRF are missing that these patches intend to
> > provide.
>
> I have worked with a similar patchset. the goal was to be able to terminate
> traffic from different IPv4 nets with possible overlapping IP addresses. You
> should be able to communicate with all IPv4 nets from the same process.
>
> > The network namespaces are currently tied to a process, and
> > referenced by its pid. However, a networking stack has no particular
> > reason to be associated with any process and it should be possible to
> > use and setup additional networking stacks without the need to clone()
>
> Right.
>
> > or unshare(). The initial version of the "Coexist with the sysfs
> > limitations" patches by Benjamin Thery introduced the notion of a unique
> > network namespace identifier (nsid) that is perfectly fit for the
> > purpose of referencing networking stacks independently of any process.
> > The first two patches of his set are therefore reused here to identify
> > networking stacks.
>
> I have proposed such a global namespace before on this list, but no one seemed
> interested.
Eric in particular is opposed to any "nsid" because it introduces yet
another namespace to worry about at checkpoint/restart. A reasonable
concern.
There was quite a bit of talk at the containers mini-summit about
creating a minimal filesystem to represent the namespaces. (See
http://wiki.openvz.org/Containers/Mini-summit_2008_notes for the notes,
but they're not particularly helpful on their own).
Eric, if you have a moment, could you recap your proposal?
thanks,
-serge
_______________________________________________
Containers mailing list
Containers at lists.linux-foundation.org
https://lists.linux-foundation.org/mailman/listinfo/containers
More information about the Devel
mailing list