[Bug 1127] running nft command creates lag for forwarded packets
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Thu Mar 9 16:00:15 CET 2017
https://bugzilla.netfilter.org/show_bug.cgi?id=1127
--- Comment #9 from Karel Rericha <karel at unitednetworks.cz> ---
We are blocking "known attackers" in firewall with set compiled from several
sources which has currently about 90 000 IP addresses. This set has flag
interval and makes about 90% of items in sets with interval flag. It can be
safely converted to set without interval flag, because there are only IP
addresses, no subnets.
I will try separately second patch and converting this set to set without
interval flag. Report tomorrow.
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20170309/86f44fad/attachment.html>
More information about the netfilter-buglog
mailing list