| 17 Aug 2021 |
 das_j | Better than nothing | 16:56:59 |
 Linux Hackerman | not much more than evaluating the system or stuff like that in any case | 16:57:31 |
 andi- | It isn't slower than a regular build for me. | 17:10:19 |
| andi- | Like maybe a second? | 17:10:32 |
| andi- | That is on proper hardware and not on a constrained GitHub Actions runner or such crap. | 17:10:54 |
| andi- | In reply to @nixinator:nixos.dev
where can i read about flow offloading? In the linux source code :) | 17:11:11 |
 nixinator | In reply to @andi:kack.it
In the linux source code :) currently accessing.... | 17:12:34 |
| andi- | For that to work you have to use flowtables. You can do you regular IPv4 NAT with those IIRC. I've yet to migrate my configuration to that. | 17:13:36 |
| andi- | https://www.kernel.org/doc/html/latest/networking/nf_flowtable.html | 17:15:12 |
 eyJhb | In reply to @janne.hess:helsinki-systems.de
Because it spawns a VM for every simple firewall change? That feels kind of wasteful and slow I wouldn't say wasteful, but maybe slow. But it doesn't take long. as andi said it is maybe a sec or so :) So 100% worth it. | 17:50:34 |
| eyJhb | Not sure I can time it... As I am not sure the actual evaluation time of vim | 17:50:53 |
| eyJhb | * Not sure I can time it... As I am not sure the actual evaluation time of nix | 17:50:56 |
| eyJhb | So, so basic not very good tests says it adds 2.8s | 18:00:36 |
| eyJhb | Which I think is fairly reasonable :p And the nft check is what takes 0.768 s actually | 18:01:19 |
| eyJhb | So about 2,07 sec :) | 18:01:51 |
| 18 Aug 2021 |
|  p10r left the room. | 00:40:04 |
|  Piper McCorkle (she/her or they/them) changed their display name from Piper McCorkle to Piper McCorkle (she/her or they/them). | 07:12:42 |
| das_j | That's really a lot faster than I was expecting. Andreas Schrägle would you be in favour of that change? | 10:14:30 |
 Andreas Schrägle | Sure, considering the eval time of some of our hosts. | 10:25:22 |
| eyJhb | How many hosts do you have ? Curious of where you want to use it :) | 10:34:24 |
| das_j | In reply to @eyjhb:eyjhb.dk
How many hosts do you have ? Curious of where you want to use it :) Hydra is currently evaluating 64 hosts + some ISOs, images, tests + all 64 hosts again on unstable channels | 10:53:40 |
| das_j | We are using nft as a not-so-drop-in-replacement for networking.firewall | 10:53:52 |
| eyJhb | Nice! Would be cool if we same day use nftables for networking.firewall | 10:58:11 |
| das_j | Our interface is 0% compatible because we… I honestly don't remember anymore. It's a lot more complex, the code is a lot less readable but it's more powerful. So it's not really a drop-in replacement | 11:01:19 |
| das_j | If you are interested, these are the options | 11:01:39 |
| eyJhb | In reply to @linus.heckemann:matrix.mayflower.de
why not?
Bøf
The Danish way of doing jinx btw. because we both said "why not?" :)
| 13:07:59 |
| eyJhb | In reply to @linus.heckemann:matrix.mayflower.de
why not? *
Bøf
The Danish way of doing jinx btw. because we both said "why not?" :) (not that you asked)
| 13:08:07 |
| Linux Hackerman | In reply to @eyjhb:eyjhb.dk
Bøf
The Danish way of doing jinx btw. because we both said "why not?" :) (not that you asked)
That was my first guess :D | 14:35:41 |
| eyJhb | In reply to @linus.heckemann:matrix.mayflower.de
That was my first guess :D Haha, it translates into "beef" 😅 However I should note some do "smølf" as well, which is a smurf. 🙃 | 14:47:08 |
| andi- | das_j: you are downloading the option list twice in your options search | 14:52:03 |
