removing duplicate rules
R. DuFresne
dufresne at sysinfo.com
Tue Oct 18 00:50:28 CEST 2005
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
My reply to the orig poster, my second, was sent off list, by error on my
end. I'm willing to accept a clue if I was incorrect in stating:
first time the rule is seen, it is applied. now there can be cases whence
one wants the rule re-evaluated again, and thus might have multiple
instances, that would most often be in user define chains needing a
reapplication, though I can't think of any such instances off the top of
my
head, unless the rule is only applied in user defined chains.
Thanks,
Ron DuFresne
<replying to:>
On Mon, 17 Oct 2005, Aseem Rastogi wrote:
> Hi All,
>
> Continuing this post:
>
> Adding a rule multiple times shows multiple entries in iptables -L
output. My
> question is : does it have any performance impact on packet processing ?
>
> Should not be because as soon as a rule is matched, it should come out,
> Right?
>
> Regards,
> Aseem.
- --
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
admin & senior security consultant: sysinfo.com
http://sysinfo.com
Key fingerprint = 9401 4B13 B918 164C 647A E838 B2DF AFCC 94B0 6629
...We waste time looking for the perfect lover
instead of creating the perfect love.
-Tom Robbins <Still Life With Woodpecker>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFDVCq3st+vzJSwZikRAq1zAKCL7P/gM55KDotCL5Kk2GFQJMtULwCgifb3
a6azKVZWCibUjXtKCStAEXc=
=s/q7
-----END PGP SIGNATURE-----
More information about the netfilter
mailing list