Rule order matters. It shortcuts to the first match, and stops going
through the list at that point. According to Cisco, there is no limit on
the number of rules, but of course reality will tell us something
different.
If you don't have tons and tons of rules, then there probably won't be any
noticeable difference, but I would place the rules that will match most
often at the top, which will help performance.
On Fri, 6 Jul 2001, Jeffrey M. Foster wrote:
>
>
> hi
>
> easy one, I think.
> does the rule order matter on a PIX fw?
> if so, suggestions for order? closing rules to clean up with?
>
> thanks
>
> JEff
> --
>
> Jeff Foster
> _______________________________________________
> Firewalls mailing list
> [EMAIL PROTECTED]
> http://lists.gnac.net/mailman/listinfo/firewalls
>
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
