4. Reduce load when processing many lists of IP Addresses

Reduce load when processing many lists of IP Addresses

  • L

    My pfSense box has ~50 lists of IP address that load from Aliases (inc ½ from pfBlocker) into my Rules.

    Some of the lists have Tens or Hundreds of Thousands of - individual IP addresses (90%) and CIDRs (10%).
    Most of the individual IPs are contiguous and could be converted into CIDR notation.

    Q) Would I improve my reload times if I converted contiguous IPs into CIDR notation?

    Thank you.

    for ref:
    Adding a list of 100k IPs can add a couple of seconds to my filter reload time.
    Hardware = Pentium D w/ 4GB RAM (avg ~21% usage)
    Systems are 2.0.3 (i386), running squid3/squidGuard but not much else.

    0
  • C

    You will reduce filter reload times to some extent. How much depends on how big your lists are currently and how much aggregating shrinks them.

    0
  • L

    That's helpful, thank you.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy