Using eBPF-TC to securely mangle packets in the kernel, and pass them to my secure networking application
· 13 min read
Introduction
eBPF enables you to safely run sandboxed programs for functions like security and networking in the OS kernel, without changing kernel source code or loading kernel modules. eBPF-TC specifically has robust packet mangling capability, and enables ingress and egress operations, with high performance.