Re: loading huge number of rules in iptables (blocklist)
- From: Ron Johnson <ron.l.johnson@xxxxxxx>
- Date: Wed, 21 Mar 2007 11:00:52 -0500
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 03/21/07 10:52, H.S. wrote:
H.S. wrote:
Now, currently, there are around 151,000 ipranges listed in level1.gz
to block. So the above function's loop goes over these many times
inserting the rules for each range. And this is taking huge amount of
time: in over 50 minutes, only around 12% rules have been loaded on my
router running Etch (Pentium III, 449MHz, 380 MB RAM).
How can I speed this up? Advice?
thanks,
->HS
Anyone ... ?
That's a whole lotta rules. I'm not surprised that iptables doesn't
scale that well.
->HS
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFGAVa0S9HxQb37XmcRAkGcAJ98IedLFIjxrWFj7LoDdWuGnlduHgCgnQYL
dP8B2imaYV/NHNmlMYwY+/0=
=tAuv
-----END PGP SIGNATURE-----
--
To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx
with a subject of "unsubscribe". Trouble? Contact listmaster@xxxxxxxxxxxxxxxx
- Follow-Ups:
- References:
- Prev by Date: Re: loading huge number of rules in iptables (blocklist)
- Next by Date: Re: Browser identification to websites
- Previous by thread: Re: loading huge number of rules in iptables (blocklist)
- Next by thread: Re: loading huge number of rules in iptables (blocklist)
- Index(es):
Relevant Pages
|
