From: Alexey Abramov <levenson@mmer.org>
To: "Ludovic Courtès" <ludo@gnu.org>
Cc: guix-devel@gnu.org, Julien Lepiller <julien@lepiller.eu>
Subject: Re: Advanced network configuration
Date: Tue, 11 Oct 2022 09:57:42 +0200 [thread overview]
Message-ID: <87edve6bd5.fsf@delta.lan> (raw)
In-Reply-To: 875ygr1zer.fsf@gnu.org
Hi,
Ludovic Courtès <ludo@gnu.org> writes:
> Hi!
>
> Alexey Abramov <levenson@mmer.org> skribis:
>
> [...]
>
[...]
>
> I would do that by having ‘networking’ depend on ‘firewall’ (say).
>
> Does that make sense?
>
> It’d be interesting to see whether we need something beyond this.
But what if I just want to stop a firewall? Won't that trigger
network to restart in that case?
>> Applications have to be able to gracefully shutdown their network
>> connections. Is it the case right now, I don't know?
>
> What do you mean?
If you run a simple VM with openssh, login there via ssh client and run
'herd power-off root' from the QEMU serial console, the VM will be
shutdown, but your ssh connection won't know anything about it and the
socket will be left in a ESTABLISHED state! By typing there system will
keep trying to send data over there wire (Send-Q).
--8<---------------cut here---------------start------------->8---
root@delta ~# ss -ta -A all '( dport = :ssh )' dst 192.168.10.100/24
Netid State Recv-Q Send-Q Local Address:Port Peer Address:Port Process
tcp ESTAB 0 288 192.168.10.1:48106 192.168.10.100:ssh
--8<---------------cut here---------------end--------------->8---
There is no such a problem with shutdown command by the way.
>> I am checking (shepherd services) where `shutdown-services' defined, and
>> seems like it just walks across %services hash table. Am I missing
>> something?
>
> Correct, there’s nothing fancy going on there.
>
> Thanks,
> Ludo’.
--
Alexey
next prev parent reply other threads:[~2022-10-11 8:26 UTC|newest]
Thread overview: 11+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-10-03 18:23 Advanced network configuration Alexey Abramov
2022-10-03 19:28 ` Ryan Sundberg
2022-10-04 8:21 ` Alexey Abramov
2022-10-05 10:34 ` Ludovic Courtès
2022-10-06 13:11 ` Alexey Abramov
2022-10-06 14:07 ` Julien Lepiller
2022-10-08 17:01 ` Alexey Abramov
2022-10-10 15:17 ` Ludovic Courtès
2022-10-10 16:03 ` Julien Lepiller
2022-10-11 7:57 ` Alexey Abramov [this message]
2022-10-13 14:49 ` Ludovic Courtès
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=87edve6bd5.fsf@delta.lan \
--to=levenson@mmer.org \
--cc=guix-devel@gnu.org \
--cc=julien@lepiller.eu \
--cc=ludo@gnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this external index
https://git.savannah.gnu.org/cgit/guix.git
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.