On Thu, Feb 06, 2003 at 01:09:01PM +0100, Ed White wrote: > Obviously adding checks will slow down the whole thing, but IMHO it's better a > higher time for optimizing, that's made before using a ruleset, if it brings > better performance every time a packet is evaluated. > This will be felt by who doesn't use quick on each line.
Oh, I didn't mean the cost of building the skip step values, which only occurs when you load/change the ruleset. I would agree that adding some cost there to safe time later in ruleset evaluation (once per connection) is worth it. But this might require changes to the rule evaluation code, too, which is very time critical. Evaluating one rule is only a couple of integer comparisons, sloppily speaking, so adding just a couple of more integer operations will have a significant effect. Daniel
