Re: Is this firewall good enough?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxxxxxx>
Subject: Re: Is this firewall good enough?
From: Feizhou <feizhou@xxxxxxxxxxxxx>
Date: Wed, 09 Jun 2004 21:23:50 +0800
Cc: David Cannings <lists@xxxxxxxxx>, netfilter@xxxxxxxxxxxxxxxxxxx
In-reply-to: <Pine.LNX.4.33.0406091242570.6047-100000@blackhole.kfki.hu>
References: <Pine.LNX.4.33.0406091242570.6047-100000@blackhole.kfki.hu>
Sender: netfilter-admin@xxxxxxxxxxxxxxxxxxx
User-agent: Mozilla Thunderbird 0.6 (X11/20040502)

- Use raw table and NOTRACK to skip conntrack for the (UDP) DNS queries
  and still benefit from conntrack for all other connections.

pom raw patch. Testing....ouch, bit on the edge for me to try to use that...

I'd love to be able to track nothing but smtp and optimize on that too so that I can give connlimit a go.

References:
- Re: Is this firewall good enough?
  - From: Jozsef Kadlecsik

Prev by Date: Re: Is this firewall good enough?
Next by Date: Re: Is this firewall good enough?
Previous by thread: Re: Is this firewall good enough?
Next by thread: ports on PREROUTING
Index(es):
- Date
- Thread

[Index of Archives] [Linux Netfilter Development] [Linux Kernel Networking Development] [Netem] [Berkeley Packet Filter] [Linux Kernel Development] [Advanced Routing & Traffice Control] [Bugtraq]

Powered by Linux