Date: Tue, 24 Aug 2021 17:40:37 -0500 From: Tim Daneliuk <tundra@tundraware.com> To: Michael Sierchio <kudzu@tenebras.com>, FreeBSD Mailing List <freebsd-questions@freebsd.org> Subject: Re: ipfw Table Organization Message-ID: <7b9a7c6a-fc0e-a605-6938-8b89c09e0336@tundraware.com> In-Reply-To: <CAHu1Y71uhG4WdfWOb-nR=DqNgr-pMOkKBTWZBdfp8NCeQSLHRw@mail.gmail.com> References: <9e6cd8e2-a06e-468b-7245-d5ff13309763@tundraware.com> <CAHu1Y71uhG4WdfWOb-nR=DqNgr-pMOkKBTWZBdfp8NCeQSLHRw@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 8/24/21 5:30 PM, Michael Sierchio wrote: > Do you really mean 100,000 firewall rules? 100,000 CIDR blocks is not > a problem. You should probably consolidate CIDR blocks before adding them > to a > table, because it's a longest-prefix-match. Most of the 100,000 are CIDR blocks but there are probably on the order of 5000-ish IPs -- ---------------------------------------------------------------------------- Tim Daneliuk tundra@tundraware.com PGP Key: http://www.tundraware.com/PGP/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?7b9a7c6a-fc0e-a605-6938-8b89c09e0336>