Rule optimization
driesm.michiels at gmail.com
driesm.michiels at gmail.com
Fri Mar 20 18:12:48 UTC 2020
Hi IPFW mailing list,
What would be more efficient, theoretically? Below the two cases I'm
thinking about.
Note that the first 4 commands of case 2 are not really action rules and are
just setting up the table which for the sake of example I included.
Case 1)
* Allow ip from any to any via $lanif
* Allow ip from any to any via $loopif
* Allow ip from any to any via $vpnif
Case 2)
* table trustedif create type iface
* table trustedif add $lanif
* table trustedif add $loopif
* table trustedif add $vpnif
* Allow ip from any to any via "table(trustedif)"
Thanks in advance!
Regards,
Dries
More information about the freebsd-ipfw
mailing list