Performance no fail much, but you fail to mention how it is all organized. Not that it should matter much with modern CPUs. How many sequential steps in the path you're worried about? 500? That would be just silly. I'm guessing you have different rules for different IP or IP range matches. No big deal. Keep in mind if you're that worried about speed, maybe you ought to think about making your routing and firewalling separate. On Fri, 2003-07-18 at 09:55, Augusto Flavio wrote: > Hi, > The IPTables support some like 500 rules? > The performance fail much? > > > Tkz!
