Results 1 to 4 of 4
  1. #1
    Join Date
    Mar 2003
    Posts
    345

    Question iptables performance

    Hi,

    I will add about 9000 entries in my firewall using iptables:

    iptables -A INPUT -s <entry> -j DROP

    Yes, I want to block 9000 ip networks (long story).

    Do you think my server performance will drop very much ? My server spec is Pentium 4 2.0 GHz, 512 MB RAM, Linux RedHat 9.0.

    Thanks for any input !

  2. #2
    Join Date
    Sep 2004
    Location
    Flint, Michigan
    Posts
    5,765
    Why not do a test batch of around 100 or so and see how it handles that? Then do another test of 500 or so. Then roughly 1000. Then if it's taking that no problem hit up the rest of them.
    Mike from Zoodia.com
    Professional web design and development services.
    In need of a fresh hosting design? See what premade designs we have in stock!
    Web design tips, tricks, and more at MichaelPruitt.com

  3. #3
    Join Date
    Jul 2002
    Posts
    1,441
    It should be fine. I don't see why it would be a problem.
    Synergy Blue LLC
    SonataWeb.net | SynergyBlue.com
    USA should so something about: http://www.brillig.com/debt_clock/

  4. #4
    Join Date
    Mar 2003
    Posts
    345
    Updated with 10000+ rules, and cpu still 0.04

    Blocking 9000+ access within 6 hours

    *happy with linux*

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •