Re: iptables very slow after commit 784544739a25c30637397ace5489eeb6e15d7d49

From: Arkadiusz Miskiewicz
Date: Sat Apr 11 2009 - 14:33:18 EST

Next message: Chris Howie: "Re: Weird freezes with 2.6.28/29"
Previous message: Andrew Morton: "Re: [REGRESSION] commit 66c1ca0: {fbmem: fix fb_info->lock andmm->mmap_sem ...} causes Xfbdev not working"
In reply to: Kyle Moffett: "Re: iptables very slow after commit 784544739a25c30637397ace5489eeb6e15d7d49"
Next in thread: david: "Re: iptables very slow after commit784544739a25c30637397ace5489eeb6e15d7d49"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Saturday 11 of April 2009, Kyle Moffett wrote:

> Almost all of the standard firewall tools (such as shorewall, etc) are
> already using iptables-restore command to load firewall rules,
> primarily because using separate iptables commands was *already* way
> too slow.

Some time ago there was batch patch that allowed to use standard shell format
of calling iptables but did everything at once:

http://lists.netfilter.org/pipermail/netfilter-devel/2004-
September/016704.html

It didn't get merged - no idea why.

--
Arkadiusz MiÅkiewicz PLD/Linux Team
arekm / maven.pl http://ftp.pld-linux.org/

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Chris Howie: "Re: Weird freezes with 2.6.28/29"
Previous message: Andrew Morton: "Re: [REGRESSION] commit 66c1ca0: {fbmem: fix fb_info->lock andmm->mmap_sem ...} causes Xfbdev not working"
In reply to: Kyle Moffett: "Re: iptables very slow after commit 784544739a25c30637397ace5489eeb6e15d7d49"
Next in thread: david: "Re: iptables very slow after commit784544739a25c30637397ace5489eeb6e15d7d49"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]