Questions about your dual Opteron packetfiltering tests
David S. Miller
davem at davemloft.net
Fri Sep 10 23:29:25 CEST 2004
On Tue, 7 Sep 2004 10:41:51 +0200
Harald Welte <laforge at netfilter.org> wrote:
> > net/ipv4/conf/all/rp_filter=1
>
> never ever enable rp_filter, that makes a huge difference. rp_filter is
> not even recommended as default, and probably Debian is the only
> distribution doing that mistake (read netdev archives on this).
Absolutely correct. This setting causes routing lookups to be
2 to 3 times more expensive.
More information about the netfilter-devel
mailing list