On Fri, Jan 28, 2005 at 12:56:30PM -0600, Steve Bergman wrote:
> I have a large rule set (~53000 rules) that I sometimes load using
> iptables-restore. (It takes almost an hour.
That's really slow. I've seen multiple minutes, but an hour? What kind
of system is this? How does the ruleset
On Fri, Jan 28, 2005 at 12:56:30PM -0600, Steve Bergman wrote:
I have a large rule set (~53000 rules) that I sometimes load using
iptables-restore. (It takes almost an hour.
That's really slow. I've seen multiple minutes, but an hour? What kind
of system is this? How does the ruleset look
On Fri, 2005-01-28 at 12:56 -0600, Steve Bergman wrote:
> I have a large rule set (~53000 rules) that I sometimes load using
> iptables-restore. (It takes almost an hour.
>
> Googling around tells me that the loop detection code in the kernel is
> slow with large rule sets. The only thing
I have a large rule set (~53000 rules) that I sometimes load using
iptables-restore. (It takes almost an hour.
Googling around tells me that the loop detection code in the kernel is
slow with large rule sets. The only thing that seems odd to me is that
throughout the entire loading process,
I have a large rule set (~53000 rules) that I sometimes load using
iptables-restore. (It takes almost an hour.
Googling around tells me that the loop detection code in the kernel is
slow with large rule sets. The only thing that seems odd to me is that
throughout the entire loading process,
On Fri, 2005-01-28 at 12:56 -0600, Steve Bergman wrote:
I have a large rule set (~53000 rules) that I sometimes load using
iptables-restore. (It takes almost an hour.
Googling around tells me that the loop detection code in the kernel is
slow with large rule sets. The only thing that
6 matches
Mail list logo
