Performance implications of packet filtering with linux ebpf
Firewall capabilities of operating systems are traditionally provided by inflexible filter
routines or hooks in the kernel. These require privileged access to be configured and are not …
routines or hooks in the kernel. These require privileged access to be configured and are not …
Creating complex network services with ebpf: Experience and lessons learned
The extended Berkeley Packet Filter (eBPF) is a recent technology available in the Linux
kernel that enables flexible data processing. However, so far the eBPF was mainly used for …
kernel that enables flexible data processing. However, so far the eBPF was mainly used for …
Fast packet processing with ebpf and xdp: Concepts, code, challenges, and applications
MAM Vieira, MS Castanho, RDG Pacífico… - ACM Computing …, 2020 - dl.acm.org
Extended Berkeley Packet Filter (eBPF) is an instruction set and an execution environment
inside the Linux kernel. It enables modification, interaction, and kernel programmability at …
inside the Linux kernel. It enables modification, interaction, and kernel programmability at …
Extended berkeley packet filter: An application perspective
H Sharaf, I Ahmad, T Dimitriou - IEEE Access, 2022 - ieeexplore.ieee.org
The extended Berkeley Packet Filter (eBPF) is a lightweight and fast 64-bit RISC-like virtual
machine (VM) inside the Linux kernel. eBPF has emerged as the most promising and de …
machine (VM) inside the Linux kernel. eBPF has emerged as the most promising and de …
[PDF][PDF] Accelerating linux security with ebpf iptables
Nowadays, the traditional security features of a Linux system are centered on iptables, which
has been the most used packet filtering mechanism in the Linux kernel for almost 20+ years …
has been the most used packet filtering mechanism in the Linux kernel for almost 20+ years …
[PDF][PDF] Netfilter's connection tracking system
P Ayuso - Login: The Usenix Magazine, 2006 - usenix.org
FILTERING POLICIES BASED UNIQUELY on packet header information are obsolete.
These days, stateful firewalls provide advanced mechanisms to let sysadmins and security …
These days, stateful firewalls provide advanced mechanisms to let sysadmins and security …
P4Knocking: Offloading host-based firewall functionalities to the network
The introduction of Software-Defined Networks (SDN) and the evolution towards
programmable data planes bring the opportunity to offload several functions to the data …
programmable data planes bring the opportunity to offload several functions to the data …
Securing Linux with a faster and scalable iptables
The sheer increase in network speed and the massive deployment of containerized
applications in a Linux server has led to the consciousness that iptables, the current de-facto …
applications in a Linux server has led to the consciousness that iptables, the current de-facto …
[PDF][PDF] Swift: A Fast Dynamic Packet Filter.
This paper presents Swift, a packet filter for high performance packet capture on commercial
off-the-shelf hardware. The key features of Swift include (1) extremely low filter update …
off-the-shelf hardware. The key features of Swift include (1) extremely low filter update …
[PDF][PDF] FFPF: Fairly Fast Packet Filters.
FFPF is a network monitoring framework designed for three things: speed (handling high link
rates), scalability (ability to handle multiple applications) and exibility. Multiple applications …
rates), scalability (ability to handle multiple applications) and exibility. Multiple applications …