>I would think it would store ip's, as performing a dns lookup everytime
>a packet arrives is going to be a _minor_ performance hit! I also doubt
>ipchains contains a caching nameserver, which would in someway alleviate
>that problem.
It would be IP addresses because domain names are a userland construct.
The kernel's IP stack doesn't and shouldn't have to know about domain
names.
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug
