On 2012-05-23 12:20, Matthias May wrote:
Am 23.05.2012 um 15:25 schrieb Ugo Bellavance<[email protected]>:
On 2012-05-22 15:44, Vick Khera wrote:
On Thu, May 17, 2012 at 2:37 PM, Ugo Bellavance<[email protected]> wrote:
I would like to make sure my rules in the best order. I understand that the
rules are processed from top to bottom, so I should place the rules that are
most used at top. However, how long lasts a state? I just want to know
whether a long stream of data (a backup, for example) between two hosts will
hit the rules more or less than my smtp server, for example (less data, but
more connections).
Once a state is established, the rules are not referenced for that
connection again. The "check-state" happens pretty close to the top.
I understand, but if, for example, you download an ISO using http, will it
remain in one state for the whole transfert?
Thanks,
Ugo
_______________________________________________
List mailing list
[email protected]
http://lists.pfsense.org/mailman/listinfo/list
Yes.
With http you have a request for each file on the server you need.
For a single ISO you only need a single TCP connection.
Ok, thanks, so I'll put my smtp and http rules near the top and my
backups near the bottom.
Ugo
_______________________________________________
List mailing list
[email protected]
http://lists.pfsense.org/mailman/listinfo/list
