Hello pf, I was wondering if there was any performance difference from ordering the rules in a certain way. For example. I usually order my rules first for interface, then for direction, IP type and then by IP protocol. Does this affect the loading speed of the rules? I mean, why you apply the Step Jump (I can't remember the name) does this ordering helps or makes it worse (like with the quick sort algorithm where the worst case is an ordered list). That being the case, do you think it would be worth to have a switch not to optimize in that way the rule set? May be for high availability instalations? And may be let the optimizer be run to standard output so it can be done offline. Just a thought.
Best regards, Alejandro Belluscio
