Re: iptables limitations

To: debian-user@lists.debian.org
Subject: Re: iptables limitations
From: Raf Czlonka <rjc@linuxstuff.pl>
Date: Fri, 28 Oct 2011 14:53:43 +0100
Message-id: <[🔎] 20111028135343.GB24901@linuxstuff.pl>
In-reply-to: <[🔎] 4EA2FFDE.5080108@paz.bz>
References: <[🔎] 4EA2FFDE.5080108@paz.bz>

On Sat, Oct 22, 2011 at 06:39:42PM BST, Jim Pazarena wrote:
> I have been using debian as a border router, and using
> iptables to "drop" connections to various IPs which hit my honeypot.
> 
> I am wondering, if there is a point where too many iptables rules
> impede the speed of the network?
> 
> How many "drops" can I entertain, before I should look at some
> other method of firewall blocking?

It shouldn't matter.
Set your default policy to DROP and allow only the ones you need.

Regards,
-- 
Raf

Reply to:

References:
- iptables limitations
  - From: Jim Pazarena <debian@paz.bz>

Prev by Date: Re: Software Raid, recovery after drive broke
Next by Date: How to listen to abel prize lectures of 2007 in iceweasel. lectures are in mp4 format but are not opening even with vlc installed
Previous by thread: iptables limitations
Next by thread: r600g
Index(es):
- Date
- Thread