Latest version of OpenSUSE Tumbleweed (20180903) uses new 4.18.x BPF .ko for firewalld!!

AveryFreeman

consummate homelabber
Mar 17, 2017
356
44
28
41
Near Seattle
averyfreeman.com
So,

it's here

It's finally here

A linux distro that uses BPF for packet filtering on the ip socket!

We've been hearing about BPF/BCC for at least two years now, mainly in the context of issue tracking/tracing and containers

But, without any fanfare, OpenSUSE has brought us BPF (also known as Berkeley Packet Filter) of OpenBSD/pfSense fame in its latest version of Tumbleweed (I tested 20180903)

And it's not just for containers anymore... it's controlled by default by FIREWALLD!!!!

HOOORRAAAYYYYY!!!!

Are you as excited as I am???!!! WHOOOOOO!!!!
 

MiniKnight

Well-Known Member
Mar 30, 2012
3,037
941
113
NYC
Only get excited after a few people try it and find bugs. Then I'll be excited and try.

Maybe fdio dpdk pfsense on Linux I would.
 

AveryFreeman

consummate homelabber
Mar 17, 2017
356
44
28
41
Near Seattle
averyfreeman.com
Only get excited after a few people try it and find bugs. Then I'll be excited and try.

Maybe fdio dpdk pfsense on Linux I would.
BPF is the new kernel-extension version of pf for linux, originally developed on OpenBSD and ported to FreeBSD (it's the pfSense firewall).

dpdk looks like it's available: https://software.opensuse.org/search?utf8=✓&q=dpdk

Didn't see vpp but you could build it : FDio/vpp

Or put it on Open Build Service: Open Build Service

If you need a web GUI there's a firewalld module for webmin: SDB:Webmin - openSUSE

Edit: Found vpp package: openSUSE Software
 
Last edited: