IPFW MAX RULES COUNT PERFORMANCE
Bill Moran
wmoran at collaborativefusion.com
Fri Apr 24 16:42:03 UTC 2009
In response to Daniel Dias Gonçalves <ddg at yan.com.br>:
> Very good thinking, congratulations, but my need is another.
> The objective is a Captive Porrtal that each authentication is
> dynamically created a rule to ALLOW or COUNT IP authenticated, which I'm
> testing is what is the maximum capacity of rules supported, therefore
> simultaneous user.
>
> Understand ?
If you're only doing allow, then you'd be better off using a table,
which has much better performance than a bunch of separate rules.
If you're counting packets, I don't know if that approach will work
or not.
--
Bill Moran
Collaborative Fusion Inc.
http://people.collaborativefusion.com/~wmoran/
wmoran at collaborativefusion.com
Phone: 412-422-3463x4023
****************************************************************
IMPORTANT: This message contains confidential information and is
intended only for the individual named. If the reader of this
message is not an intended recipient (or the individual
responsible for the delivery of this message to an intended
recipient), please be advised that any re-use, dissemination,
distribution or copying of this message is prohibited. Please
notify the sender immediately by e-mail if you have received
this e-mail by mistake and delete this e-mail from your system.
E-mail transmission cannot be guaranteed to be secure or
error-free as information could be intercepted, corrupted, lost,
destroyed, arrive late or incomplete, or contain viruses. The
sender therefore does not accept liability for any errors or
omissions in the contents of this message, which arise as a
result of e-mail transmission.
****************************************************************
More information about the freebsd-net
mailing list