[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: iptables limitations



On Sat, Oct 22, 2011 at 06:39:42PM BST, Jim Pazarena wrote:
> I have been using debian as a border router, and using
> iptables to "drop" connections to various IPs which hit my honeypot.
> 
> I am wondering, if there is a point where too many iptables rules
> impede the speed of the network?
> 
> How many "drops" can I entertain, before I should look at some
> other method of firewall blocking?

It shouldn't matter.
Set your default policy to DROP and allow only the ones you need.

Regards,
-- 
Raf


Reply to: