Michel Machado
Michel Machado
Discussion #704 highlights 3 situations in which Gatekeeper can provide better error messages to help newcomers: 1. Reporting that DPDK does not have a driver for a given NIC. The...
The current implementation of `lib/net.c:create_pktmbuf_pool()` ignores the interfaces' MTUs. This is not a problem because `create_pktmbuf_pool()` uses `RTE_MBUF_DEFAULT_BUF_SIZE`, which is ideal for the typical MTU of Gatekeeper, namely, 2048 bytes....
Once issue #602 is implemented, the effort to enable the implementation of [syncookied](https://github.com/LTD-Beget/syncookied) as a request BPF will have been lowered. Namely, it would require adding the following facilities to...
Flesh out `include/gatekeeper_net.h:destroy_mempool()` using `rte_mempool_free()`. This change will require reviewing the functions that release resources at termination because the current code does not account for the proper release of mbuf...
When Gatekeeper gracefully shuts down, it typically produces error messages such as the following example: ``` LLS/0 2024-06-26 13:22:16 NOTICE The LLS block is exiting GGU/2 2024-06-26 13:22:16 NOTICE The...
For rather small deployments, deployers are willing to compromise redundancy and have instances of the GT block on Gatekeeper servers, so the whole deployment is a single Gatekeeper server. Being...
Currently, Gatekeeper servers log basic statistics about the traffic. One of these log entries looks like this: ``` GK/6 2024-12-11 18:24:26 NOTICE Basic measurements [tot_pkts_num = 391822, tot_pkts_size = 210544477,...
A log entry with information on a dumped flow looks like this: ``` GK/6 2024-12-13 18:45:57 ERR Flow (src: 111.111.111.111, dst: 222.222.222.222) at index 10998: [state: GK_BPF (3), flow_hash_value: 0x3a4ad6e1,...
When a network is correctly set up, there are no MTU issues at Gatekeeper servers. Nevertheless, it can be difficult to identify if a protected server has a wrong MTU....
The configuration file `lua/net.lua` comes with the parameters `front_mtu = 1500` and `back_mtu = 2048`, which is the proper setting for Gatekeeper servers, but not for Grantor servers. Grantor servers...