Hello all (again), I was wondering if someone could tell me if using tags in pf.conf makes anything better apart from setting up trusts between interfaces etc.
Basically, what I'm trying to ask is how can I make pf faster? What is important? More RAM? Faster CPU? Using tags? A smaller rule file? Using architecture other than x86? I've got a Sun Microsystems Ultra 5 270MHz 64bit CPU with 128MB of RAM. Would that be better than the 1GHz 1024MB RAM x86 bitsa I'm using at the moment? top shows the machine is only using around 70MB. What would you consider as the optimum configuration for a machine built with pf in mind? Also, is it wrong to allow everything out of your network? I'm only allowing HTTP/S, SMTP, FTP... the usual suspects but I'm blocking every other unnecessary port in and out of the int_if, ext_if and dmz_if. I bought a book once that talked about, "My network can do no harm" and ever since then, I've blocked all that's not needed. Is this an overkill that could be chocking my performance since if you were to print my rules out, the paper would go from here to China and back? Cheers, Steve Laurie -- Windows constantly reminds me of my daughter - "Honest Daddy, I wasn't doing anything and it just broke!"
