How difficult would it be to provide layer 3 (point-to-point) versions of the existing netfront and netback drivers? Ideally, these would share almost all of the code with the existing drivers, with the only difference being how they are registered with the kernel. Advantages compared to the existing drivers include less attack surface (since the peer is no longer network-adjacent), slightly better performance, and no need for ARP or NDP traffic. -- Sincerely, Demi Marie Obenour (she/her/hers) Invisible Things Lab
signature.asc
Description: PGP signature
