On Thu, 27 Jul 2000, Marty Saletta wrote:
> Does anyone know a general "rule of thumb" about how
> many rules FW-1 can handle before a performance hit?
> I'm guessing it depends on a number of factors, such as
> the hardware hosting the FW, speed of the network,
> number of hosts, etc.
One thing to consider, you will run into management problems
of your rulebase long before you will hit performance issues.
It may be difficult for your environment, but I recommend
you keep your rulebase under 30 rules. Performance is not
the issue, but managing your rules. Once you hit more then
30 rules, mistakes can happen. Once you hit a hundred rules
no one really knows what is going on :)
Something to consider ...
lance
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
