Great Circle Associates Firewalls
(August 1997) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: Gauntlet Performance
From: Rick Murphy <rick @ paimail . com>
Date: Fri, 29 Aug 1997 20:48:19 -0400
To: rwm <rmcm001 @ us . net>
Cc: firewalls @ GreatCircle . COM
In-reply-to: <34064088 . 23A5 @ us . net> 
The Gauntlet packet filter code stores the rule data in a form that is
trivially searchable with ordering that's designed to quickly skip rules
that don't apply. However, the list is linearly searched - rule bases of
less than several hundred rules on an Ultra SPARC should be no problem for
performance.
Your mileage may vary - measurement is your friend ;-)
	-Rick
References:
Indexed By Date Previous: Re: UDP scanner
From: "abydos @ jetlink . net" <abydos @ jetlink . net>
Next: Re: UDP scanner
From: "Paul D. Robertson" <proberts @ clark . net>
Indexed By Thread Previous: Gauntlet Performance
From: rwm <rmcm001 @ us . net>
Next: credit card fraud
From: Christopher Nicholls <chrisn @ softway . com . au>
Google
 
Search Internet Search www.greatcircle.com