If one has many (thousands) hosts/addresses that the same filter action needs
to be taken for, what would be the most efficient way to implement this using,
say, ipfw or ipfilter? I'm referring to the ability to create/load a large
hashed set of addresses and a way to refer to the set in a filter rule. So
rather than having many rules that need to be scanned sequentially there would
only be one rule and the matching mechanism would use a hash table instead.
Thoughts?
--
Jos Backus _/ _/_/_/ Sunnyvale, CA
_/ _/ _/
_/ _/_/_/
_/ _/ _/ _/
jos at catnook.com _/_/ _/_/_/ require 'std/disclaimer'
_______________________________________________
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
