On 2019-05-06 10:26:17 (-0700), @lbutlr wrote:
On 6 May 2019, at 11:22, lists <li...@lazygranch.com> wrote:
It had been my experience that the firewall uses more resources that
SSHGuard. Certainly it uses more memory.
But you do not have to use a firewall if that's an issue.
/etc/hosts.allow is always an option, and that block is practically
free.
I'm pretty sure that having the kernel (firewall) drop the packets is a
lot more "free" than handing the connection to a userspace process to
check /etc/hosts.allow.
But on contemporary hardware, the difference is probably impossible to
measure except under extreme load.
Philip
--
Philip Paeps
Senior Reality Engineer
Ministry of Information
