On Fri, 2002-12-20 at 13:02, lester lasad wrote: > Thanks for the responses. Regarding the name resolution is it looking > for itself, the local machine? The command below "iptables -L-n -V" > just lists the version of iptables, nothing else. Doing "iptables > -nL" gave a much quicker response. > > The main problem is that everything is slow after loading the rules ( > examples: webmin, vnc, opening a shell, smtp ) Once I disable the > rules the performance picks back up. My intentions are to make this > server my SMTP gateway which will be handling thousands of emails on a > daily basis and the performance issue after loading iptables is > preventing me from deploying this server. Has anyone seen this > behavior after enabling iptables? >
Re: experience with performance. I have an old Pentium box (think it is a P120) with 96MB of RAM. It can handle my Cable modem connections network of 5 home PC's MASQUERADING with no problems at all. My wife and I both use the internet daily. At a company I used to work at we had a Celeron 300MHz box with 64MB of RAM that handled an office of about 10 people accessing the internet through a T1 and a lab with a dozen servers and about 200 customers on the internet and we never had a problem with performance. At the same company we had a Data Center with about 50 Servers doing IMAP, SMTP, POP, WebMail and we had thousands of customers connected at any given time (we had 200,000+ e-mail boxes) and we had a RedHat 7.1 firewall running on an IBM Netfinity with a 750MHz P3 and 256MB of RAM and we would routinely have 30Mb/s sustained throughput accross a few thousand TCP connections over a 100Mb/s Ethernet and didn't have any problems. I don't think that the problem has a root cause in iptables. I think that there may be a related misconfiguration with it. -Ben. -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list