iptable rules and performance
I need to set up a firewall to allow to and fro udp traffic from
130 distinct ip addresses to my server. Unfortunately, it is not possible
to collapse the firewalling rules for these machines by specifying the udp
port. My question has to do with the performance of the host under such
conditions. I have an estimated traffic of .5 million packets coming into
my server / day, and the firewall will have to sift through this traffic
to filter through 130 ip addresses. Has anyone used iptables under these
conditions? Were there any observed problems with the firewall not being
able to keep up with the traffic?
Any alternative suggestions?