On 5/20/2016 11:20 AM, Brandon Applegate wrote: > Hello all, > > In my cascade of smtpd restrictions, along with RBL, rDNS etc - I have: > > check_client_access cidr:/etc/postfix/cidr_client_checks > > I mainly (manually) throw egregious offenders in there that haven’t been > added to one of the RBLs yet. > > In any case - I’ve been wondering about the potential performance impact > related to the size of the cidr_client_checks file. I currently have ~ 600 > networks listed there. I haven’t noticed anything yet - but would like to > know if there’s a size where I should worry. I’ve pruned the oldest entries > from here in the past (assuming plenty of time to get them added to an RBL) - > but if there’s no foreseeable performance impact - I’d like to not worry > about keeping it pruned. > > Thanks.
The cidr: map is quite efficient. IIRC the last time someone performance tested the cidr: map type, performance stayed high even with 10's of thousands of entries. (or was it 100's of thousands?? whatever... it was a lot) You're a really long way from where you need to worry about the map size. -- Noel Jones
