Hello, I would like to ask you about performance of netfilter.
I need make NAT on 100Mbit line comes from outside to router. Each packet send inside with DNAT (with range about 3 dst IP) and any burst limit ont SYN. Im afraid of many comes connection. If I set ip_conntrack on highest value, can I established mass of connection at any times? I expect that I can receive about 100.000 connection per second. What netfilter do with this loads? (Perhaps, I can build strongest line). Performance of router will be goot (any 19" wide 1-2U rack mounted server). Many thanks for your experience. Petr Simecek
