From: pieter claassen <pieter@openauth.co.uk>
To: netfilter@lists.netfilter.org
Subject: Ipqueue slows down network scan
Date: 28 Mar 2003 13:42:57 +0000 [thread overview]
Message-ID: <1048858974.925.12.camel@pc-dt> (raw)
Hello,
I am running ipqueue and snort-inline. However, I find that the moment
that I add
iptables -A FORWARD -j QUEUE
nmap scans slow down by an order of magnitude.
It is quite important for me to understand why this is happening. Any
help is appreciated.
Also, the firewall machine cpu and mem load is real low, so it certainly
doesn't see to be running out of capacity (10 Mb network)
Could a machine start dropping packets even though there is not
significant CPU or Mem load and where will it report dropped packets?
The kernel has the br-nf patches loaded and the firewall is in bridged
mode.
Thanks,
pieter
--
-----------------------------
Pieter Claassen
pieter@openauth.co.uk
http://www.openauth.co.uk
OpenAuth
Tel: 01344 390530
DDI: 01344 390630/390631
Fax number: 01344 390700
Mobile: 0776 665 6924
Highview House
Charles Square
Bracknell
Berkshire
RG12 1DF
TERMS AND CONDITIONS
(i)The information contained in this email and attachments is only
intended for the addressed recipient(s) and may not be distributed or
viewed by any other party without the explicit consent of the sender. If
you have received this message by accident, please contact Pieter
Claassen (pieter@openauth.co.uk) and destroy any electronic or physical
copies of the information contained in it, immediately.
(ii)This email is not certified to be virus free and OpenAuth accepts no
liability for losses arising from you receiving this email.
(iii)Any digital signatures (if present) used to authenticate this
email, only serves to allow you to verify the originating email address
of the sender and should not be relied upon to prove identity or base
financial transactions on, unless the Certificate Practice Statement
that the signature references, explicitly states differently.
(iv)This email may be subjected to further terms and conditions as
published on the company website at http://www.openauth.co.uk. If you
need to rely on the information contained in this email in any way, then
you should read those terms and conditions to understand how much you
can trust the information in this email.
(v)OpenAuth retains the copyright on any relevant material that is
included in this email.
reply other threads:[~2003-03-28 13:42 UTC|newest]
Thread overview: [no followups] expand[flat|nested] mbox.gz Atom feed
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1048858974.925.12.camel@pc-dt \
--to=pieter@openauth.co.uk \
--cc=netfilter@lists.netfilter.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox