Re: Q: ipchains and limitations in (accounting) rules

Gabor Lenart (lgb@oxygene.terra.vein.hu)
Thu, 10 Jun 1999 14:25:44 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Davide Libenzi: "Linux semaphore implementation ..."
Previous message: Riley Williams: "Re: Profanity in the Linux Kernel?!?!?"

On Wed, Jun 09, 1999 at 11:05:54PM +0200, Friedrich Lobenstock wrote:
> Frank Bernard wrote:
> >
> > I've set up a complex firewall with ipchains with more then 800 rules.
> > No performance tradeoff yet.
> >
>
> I already have 1024 accounting rules in action but in the worst case I might
> end up with about 260000. In reality I think I'll need about 2048. But
> in the worst case...

BTW, is there any plan to implement uid based ipchain rules in the kernel ?
(and maybe better integrated traffic shaper function : adjustable shaper
for every rule or so)

-- 
 ---[ LGB/DC ]------------[ University Of Veszprém ]------[ Lénárt Gábor ]---
   Ready to love, ready to fly. Ready to fail, ready to flow, ready to die ...
 ---[ 88/422022(4602) ]---[ http://lgb.hal.vein.hu ]---------[ 87/477074 ]---
finger lgb@hal2000.hal.vein.hu for more information including my PGP&GEEK code

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Davide Libenzi: "Linux semaphore implementation ..."
Previous message: Riley Williams: "Re: Profanity in the Linux Kernel?!?!?"