Hello all
In running OpenLinux 2.2, and using ipchains, is there any optimizations
which could be done with ipchains to speed up pop3/smtp access?
Currently, I am only using two rules for ipchains on all machines
which use ip masq in the office (about 25 or so):
# enable ip forwarding
echo 1 > /proc/sys/net/ipv4/ip_forward
echo 1 > /proc/sys/net/ipv4/tcp_syncookies
/sbin/ipchains -P forward DENY
/sbin/ipchains -A forward -j MASQ -s 192.168.3.0/24 -d 0.0.0.0/0
Now, according to my Using Caldera OpenLinux 2.2 book by QUE, it is
recommended that the following optimizations be added:
ipchains -A output -p tcp -d 0/0 80 -t 0x01 0x10
ipchains -A output -p tcp -d 0/0 telnet -t 0x01 0x10
ipchains -A output -p tcp -d 0/0 22 -t 0x01 0x10
(though I deny telnet access to the box, and use ssh 1.2.2x instead) :-)
then a section for maximum reliability for stmp:
ipchains -A output -p tcp -d 0/0 smtp 0x01 0x04
then a section for minimum cost for pop-3
ipchains -A output -p tcp -d 0/0 pop-3 0x01 0x02
Now, will this configuration produce better performance in qmail 1.03, or
can I just ignore what is in this chapter of the book?
-Bill
