Thomas Jacob wrote:
Hello list,
Here's a patch to speed up iptcc_find_chain_by_offset
(O(n)->O(log(n)) by creating a lookup table while
initially translating the kernel blob.
In my test case a second iptables-restore with a file containing
~50k chains with 120k~ rules takes 11s instead of 1m30s (on a VM).
iptables -vnL SOMECHAIN takes 0.5s instead of 1m12s.
That sounds great.
Comments and suggestions would be very welcome, as would
be inclusion into the mainline distribution ;-)
Please resend the patch inline (or using Content-Disposition: inline;
instead of attachment) so people can view it in their mail clients.
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
