Date: Wed, 14 Oct 1998 12:08:41 -0500 (CDT) From: John Preisler <john@vapornet.net> To: Kenneth Ingham <ingham@i-pi.com> Cc: "N. N.M" <madrapour@hotmail.com>, freebsd-security@FreeBSD.ORG Subject: Re: Again logging! Message-ID: <13860.55858.134449.692826@habanero.chili-pepper.net> In-Reply-To: <19980114092154.B449@i-pi.com> References: <19981014142006.22104.qmail@hotmail.com> <19980114092154.B449@i-pi.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Also keep in mind that these sysctl switches, unlike ipfw rules, have NO LIMIT on them. A person could easily overflow your /var partition [assuming you have one] in a few minutes with a program like strobe. fwiw. Kenneth Ingham writes: > > 3- Will it affect the system performance if I activate the logging of > > TCP and UDP connections by setting the following kernel variables?: > > net.inet.tcp.log_in_vain=1 > > net.inet.udp.log_in_vain=1 > I'm sure it does. I have no specific numbers though. > > I run with both turned on on the main router (which is a FreeBSD box). > My router is idle >99% of the time, so the performance hit is not a > problem. The machine is much faster than the network connection (33.6 > full-time dialup in my case). > > How fast is your network connection? That and the performance of your > machine should be the determining factor(s) about whether or the > performance hit will be a problem. > > Kenneth > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?13860.55858.134449.692826>