>I noticed a decrease in the throughput of my network connection. I figure
>this is probably the result of the 25 or so extra rules I have blocking
>these ip addresses. My question is this. Is there anyway to block these
>ip's without slowing down my connection? Maybe something to do with the
>hosts.allow, hosts.deny, etc or something?
Filtering incoming traffic with a IPFWADM ruleset is better than
the TCP wrappers. I'd recommend both just in case they got thru
the firewall.
Anyway.. A few things about your setup:
- How fast of a box is this? RAM?
You might have a bad rule in there...
Also, Order of your ruleset is important. IPFWADM searches the list from
the beginning and once it finds the first rule that applies, it takes
it and skips the rest. How do you know how to re-order? Thats
kinda tough since onlt you know what applies. Take some time
and give it a hard look.
--David
.----------------------------------------------------------------------------.
| David A. Ranch - Remote Access/Linux/PC hardware [EMAIL PROTECTED] |
!---- ----!
`----- For more detailed info, see http://www.ecst.csuchico.edu/~dranch -----'
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
For daily digest info, email [EMAIL PROTECTED]
