Re: iptables --list is very slow

To: debian-user@lists.debian.org
Subject: Re: iptables --list is very slow
From: Mike Bird <mgb-debian@yosemite.net>
Date: Mon, 15 Oct 2007 16:21:11 -0700
Message-id: <[🔎] 200710151621.12205.mgb-debian@yosemite.net>
In-reply-to: <[🔎] 200710151817.06547.jw@mailsw.com>
References: <[🔎] 200710151817.06547.jw@mailsw.com>

On Monday 15 October 2007 16:17, Jonathan Wilson wrote:
> I just tried using iptables --list on one of my servers and it took about 4
> minutes for it to list all the rules, pausing several seconds between each
> batch of lines. There are a lot of rules, but if all those lines were in a
> text file it would only take a fraction of a second to cat them. So the
> slowness is not from printing a lot of lines to the console.
>
> Is this normal behaviour? Is there a way to make it print faster?
>
> The actual rules were generated by firehol. Using Debian Etch netinstall -
> nothing abnormal.

See if "iptables --list -n" is fast.  If so, it's the reverse DNS lookups
that are slowing down "iptables --list", so you'll need to check DNS settings.

Reply to:

References:
- iptables --list is very slow
  - From: Jonathan Wilson <jw@mailsw.com>

Prev by Date: iptables --list is very slow
Next by Date: Greeting card web sites used by Debian users
Previous by thread: iptables --list is very slow
Next by thread: Greeting card web sites used by Debian users
Index(es):
- Date
- Thread