|
Recompiling the kernel- part 2
Introduction to this web pageThis is a sequel to the page about recompiling the kernel, in order to have a kernel in a live firewall that is matched to the function of the firewall.
Modifying a live production firewallBased on my experiences of recompiling the kernel on a laboratory based firewall, the last thing I wanted to do was to try to compile a new kernel in a live production firewall, where there is a considerable user dependency on the existence of a working firewall. I therefore investigated the possibility of importing a replacement already-built kernel into the live firewall. It turned out it is very easy, and only involved the following steps :-
And that is all that was required. There was an error message generated during the copying of the kernel modules folder, which advised that a file called "Build" could not be copied. This isn`t a problem, as this file is a symbolic link to the source code folder in /kernel/, and the live firewall works fine without it. As far as I am aware, there is no general requirement for the source code to exist in a Linux installation.
The resultsVery cool ! A very noticeable reduction in transit time through the firewall. Sorry, I can`t quantify it in terms of seconds or milliseconds, but as a user interaction with server based services is much faster.
© 2004 Ron Turner Return to the Firewall index page
|
|