Re: Optimizing Kernel for huge iptables ruleset

To: ifpadmin@uni-bonn.de, debian-firewall@lists.debian.org
Subject: Re: Optimizing Kernel for huge iptables ruleset
From: Jerome Vandenabeele <jerome.vandenabeele_deb@gadz.org>
Date: Wed, 20 Oct 2004 17:33:32 +0200
Message-id: <[🔎] 20041020173332.271ffdaf@localhost>
In-reply-to: <[🔎] 417502B0.9090004@gmx.net>
References: <[🔎] 417502B0.9090004@gmx.net>

Hello Martin, 

On Tue, 19 Oct 2004 14:04:00 +0200
"Martin G.H. Minkler" <dukeofnukem@gmx.net> wrote:
> Two iptables rulesets:
> The first 'normal' ruleset is pretty restrictive against connetions
> from the outside, more or less open towards connections opened from
> the LAN. The second ruleset inserted after the first is a huge IP
> blacklist (1.4MB iptables script!) that takes nearly half an hour to
> be inserted into the running ruleset.
Have you try to load your second ruleset with hipac?
http://www.hipac.org/

Agreed their site, it loads faster iptables ruleset, and both tools
could be use together.

Greetings
Jerome

Reply to:

Follow-Ups:
- Re: Optimizing Kernel for huge iptables ruleset
  - From: "Martin G.H. Minkler" <dukeofnukem@gmx.net>

References:
- Optimizing Kernel for huge iptables ruleset
  - From: "Martin G.H. Minkler" <dukeofnukem@gmx.net>

Prev by Date: iptables-save/restore with dynamic IP
Next by Date: Re: Optimizing Kernel for huge iptables ruleset
Previous by thread: Re: Optimizing Kernel for huge iptables ruleset
Next by thread: Re: Optimizing Kernel for huge iptables ruleset
Index(es):
- Date
- Thread