[Devel] Re: [RFC][PATCH] ns: Syscalls for better namespace sharing control.
Enrico Weigelt
weigelt at metux.de
Thu May 27 05:06:15 PDT 2010
* Eric W. Biederman <ebiederm at xmission.com> schrieb:
> At least for the network namespace there is a lot of value in being
> able to just change that single namespace. Having multiple logical
> network stacks has it's challenges but has a lot of practical
> applications. Especially when there is the possibility of private
> ipv4 addresses overlapping, or you have interfaces where you never
> want to forward between them but you want forwarding enabled.
ACK. One practical example: virtualized routes, eg. for VPNs.
Several years ago, I had a customer who provided VPNs via central
hubs - one of the main problem was that he had dedicated physical
machines for the VPN hubs due overlapping IP spaces. We've
later migrated them to coliunx-based VMs to save a lot iron.
In one of my next projects this issue will pop up again.
cu
--
---------------------------------------------------------------------
Enrico Weigelt == metux IT service - http://www.metux.de/
---------------------------------------------------------------------
Please visit the OpenSource QM Taskforce:
http://wiki.metux.de/public/OpenSource_QM_Taskforce
Patches / Fixes for a lot dozens of packages in dozens of versions:
http://patches.metux.de/
---------------------------------------------------------------------
_______________________________________________
Containers mailing list
Containers at lists.linux-foundation.org
https://lists.linux-foundation.org/mailman/listinfo/containers
More information about the Devel
mailing list