[Bug 773] iptables performance limits on # of rules using ipset

bugzilla-daemon at bugzilla.netfilter.org bugzilla-daemon at bugzilla.netfilter.org
Wed Feb 29 16:09:36 CET 2012


--- Comment #1 from Jozsef Kadlecsik <kadlec at netfilter.org> 2012-02-29 16:09:35 CET ---
This is the old ipset branch, which protects the sets with a single spinlock. I
suspect that is the reason for the performance degradation.

The development of ipset is focused on the ipset 6.x branch. I don't have free
resource to work on the old branch, so please try to upgrade (but it needs at
least kernel 2.6.34).

Configure bugmail: http://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.

More information about the netfilter-buglog mailing list