Hm... I feel I've tried iptables-restore, but speed was about the same. 2008/5/15 Henrik Nordstrom <henrik@xxxxxxxxxxxxxxxxxxx>: > On tor, 2008-05-15 at 15:57 +0500, Anton wrote: >> Definitelly what my test shows - while rule-inserts - if you >> try to insert 10000 rules - after a several hundreds - it >> will be inserting like a 1 rule in 1 second and slowness >> will progress :) > > If you need to change add many rules then iptables-restore is the tool > to use. Batches the updates in a single transaction, instead of one > transaction per rule... > > Regards > Henrik > > -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
