[Gllug] iptables with 1000s of IP addresses
Richard Jones
rich at annexia.org
Sun Dec 28 20:01:41 UTC 2008
On Sun, Dec 28, 2008 at 06:20:50PM +0000, Anthony Newman wrote:
> Richard Jones wrote:
> > At the moment, iptables seems to be handling all of this OK, but ...
> >
> > Can I measure the overhead?
>
> I'd flippantly suggest looking at the output of top(1). If you're not
> running out of memory or processor time, there's no problem. At the rate
> you're adding entries, it seems unlikely to become a sudden problem.
top doesn't really show much of interest. The time used by the kernel
disappears into some black hole.
> If you wished to partake, there's DroneBL (http://www.dronebl.org/)
> which already maintains a list of queryable known-abusive addresses, to
> which you can also in turn contribute. YMMV of course.
Interesting, thanks.
I also found http://www.projecthoneypot.org/ but it has a pernicious
license.
Rich.
--
Richard Jones
Red Hat
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list