Filtering question: checking for many addresses in a single rule?
From: Jos Backus (jos_at_catnook.com)
Date: 10/22/03
- Previous message: Tobias P. Santos: "Re: Remote Boot"
- Next in thread: Lars Eggert: "Re: Filtering question: checking for many addresses in a single rule?"
- Reply: Lars Eggert: "Re: Filtering question: checking for many addresses in a single rule?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Tue, 21 Oct 2003 19:26:04 -0700 To: freebsd-net@freebsd.org
If one has many (thousands) hosts/addresses that the same filter action needs
to be taken for, what would be the most efficient way to implement this using,
say, ipfw or ipfilter? I'm referring to the ability to create/load a large
hashed set of addresses and a way to refer to the set in a filter rule. So
rather than having many rules that need to be scanned sequentially there would
only be one rule and the matching mechanism would use a hash table instead.
Thoughts?
--
Jos Backus _/ _/_/_/ Sunnyvale, CA
_/ _/ _/
_/ _/_/_/
_/ _/ _/ _/
jos at catnook.com _/_/ _/_/_/ require 'std/disclaimer'
_______________________________________________
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
- Previous message: Tobias P. Santos: "Re: Remote Boot"
- Next in thread: Lars Eggert: "Re: Filtering question: checking for many addresses in a single rule?"
- Reply: Lars Eggert: "Re: Filtering question: checking for many addresses in a single rule?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
