Firewall Wizards mailing list archives

Re: Rationale for BSD (I)PF rule order?

From: "Marcus J. Ranum" <mjr () ranum com>
Date: Sun, 11 May 2003 21:34:28 -0400

Holger Kipp wrote:

Assume you have 3000+ rules on 12 interfaces and want to add another rule.


If you have a 3000+ rule 12 interface firewall you may as well
replace it with one of them newfangled "secure hubs"

mjr. 
---
Marcus J. Ranum                         http://www.ranum.com
Computer and Communications Security    mjr () ranum com

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Re: Rationale for BSD (I)PF rule order?, (continued)
- - - Re: Rationale for BSD (I)PF rule order? David Pick (May 10)
- RE: Rationale for BSD (I)PF rule order? Smith Gary-GSMITH1 (May 09)
- RE: Rationale for BSD (I)PF rule order? Stewart, John (May 09)
  - Re: Rule lookup strategies (Was: Rationale for BSD (I)PF rule order?) Mikael Olsson (May 09)
    - Re: Rule lookup strategies (Was: Rationale for BSD (I)PF rule order?) Gary Flynn (May 10)
  - Re: Rationale for BSD (I)PF rule order? Darren Reed (May 10)
    - Re: Rationale for BSD (I)PF rule order? Avishai Wool (May 11)
    - Re: Rationale for BSD (I)PF rule order? Paul Robertson (May 12)
- Re: Rationale for BSD (I)PF rule order? Holger Kipp (May 11)
  - Re: Rationale for BSD (I)PF rule order? Bill Royds (May 11)
  - Re: Rationale for BSD (I)PF rule order? Marcus J. Ranum (May 12)
    - RE: Rationale for BSD (I)PF rule order? Ben Nagy (May 12)
    - RE: Rationale for BSD (I)PF rule order? Paul Robertson (May 12)
    - RE: Rationale for BSD (I)PF rule order? Marcus J. Ranum (May 12)
    - RE: Rationale for BSD (I)PF rule order? Paul Robertson (May 12)
    - RE: Rationale for BSD (I)PF rule order? Gwendolynn ferch Elydyr (May 12)
- Re: Rationale for BSD (I)PF rule order? Holger Kipp (May 12)
- RE: Rationale for BSD (I)PF rule order? Stewart, John (May 12)