bpfilter: a BPF-based packet filtering framework
https://media.ccc.de/v/all-systems-go...
Let's discuss about `bpfilter`, a userspace daemon that empowers services to create efficient packet-filtering BPF programs using a high-level representation of filtering rules.
For a significant period, `bpfilter` wasn't more than an empty [usermode helper](https://cateee.net/lkddb/web-lkddb/ST...) and an [abandoned patch series](https://lore.kernel.org/bpf/202108291.... However, it has recently undergone active development as a userspace daemon, which can be found on GitHub at [https://github.com/facebook/bpfilter](https://github.com/facebook/bpfilter). This daemon now offers userspace services a swift and user-friendly interface to generate packet-filtering BPF programs dynamically. This discussion aims to provide further insights into `bpfilter`, including its current capabilities, performance, and ongoing development efforts.
Quentin Deslandes
https://cfp.all-systems-go.io/all-sys...
#asg2023