Fwd: cleaning up rules
Anders Fugmann
email hidden
Wed Aug 10 11:19:36 CEST 2005
On Wed, 2005-08-10 at 09:49 +0300, Devid Lolwa wrote:
> ---------- Forwarded message ----------
> From: Devid Lolwa <hollyvampire at gmail.com>
> Date: Jul 11, 2005 12:20 PM
> Subject: cleaning up rules
> To: fiaif at fiaif.net
>
>
> Dear All,
> we have 51 zones (vlan) in fiaif, we noticed that the users feel
> halting in network for few seconds during cleaning up rules.
> the problem is we are using VOIP in our network so the call disturb for a while.
> anybody has idea to prevent this.
> Thanks
51 zones? Thats a lot.
You can disable the rule cleanup, but I would not recommend it, as it
would make the firewall slower. To disable rule cleanup, write 'export
NO_CLEANUP=1' before starting FIAIF.
It would be interessting to see how much help the rule clean actually
does. Could you please post the results of:
$ iptables-save | grep -v "^[#:*]"
$ export NO_CLEANUP=1
$ /etc/init.d/fiaif restart
$ iptabes-save | grep -v "^[#:*]"
However, the rule cleaning is only done when FIAIF is restarted - do you
restart the firewall often?
Regards
Anders Fugmann
More information about the fiaif
mailing list