sadas sadas wrote: > The syntax is not a problem. The problem is in the performance. I suppose that if I configure OpenBSD to process the in/out packets only to layer 2 the performance will be much more than linux with iptables. > You know SQUAT about filtering on Linux. You want a bridging solution? Then forget about Linux. Even FreeBSD will perform better at bridging firewalling than Linux and OpenBSD is the best performer available. That ipset solution came way after OpenBSD and pf had such a feature and which was already mature and stable too. I should know, I tested ipset while it was still new some years ago. _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: Optimizing CentOS for gigabit firewall
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: centos@xxxxxxxxxx
- Subject: Re: Optimizing CentOS for gigabit firewall
- From: Chan Chung Hang Christopher <christopher.chan@xxxxxxxxxxxxxxx>
- Date: Sun, 20 Dec 2009 23:45:10 +0800
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <2053864043.254340.1261205349255.JavaMail.apache@xxxxxxxxxxxxx>
- References: <2053864043.254340.1261205349255.JavaMail.apache@xxxxxxxxxxxxx>
- User-agent: Thunderbird 2.0.0.23 (X11/20090817)
- References:
- Re: Optimizing CentOS for gigabit firewall
- From: sadas sadas
- Re: Optimizing CentOS for gigabit firewall
- Prev by Date: Re: Optimizing CentOS for gigabit firewall
- Next by Date: Re: Optimizing CentOS for gigabit firewall
- Previous by thread: Re: Optimizing CentOS for gigabit firewall
- Next by thread: Re: Optimizing CentOS for gigabit firewall
- Index(es):
 |