Hi..
I was reading Astaro Security Gateway 8.200 Public Beta, , there is a heading about Packet filter Optimization (IPset), i have copy Packet filter optimization (IPset) statement, please look blow or you can click on url to read this (second last heading).
There is a Heading Packet filter optimization (IPset) I have some query/question regarding Packet filter optimization (IPset) :-
--------------------------------------------------------------------------------
Packet filter optimization (IPset) Statement
Packet filter rules that contain list of networks/IPs, either explicit (via network/DNS groups) or implicit (via lists in WebAdmin) now use IPset (IP sets) to reduce the number of generated iptables rules.This should improve memory consumption and performance.
This affects both user-generated packet filter rules (Network Security >> Firewall) and auto-generated rules (e.g. via Allowed Networks for services or Auto packet filter rules for VPNs)
--------------------------------------------------------------------------------
Questions/Queries
1.What is the mean by IPset....??? if it is group of IP or set of IP, than we are still using IP group. what is new..??
2.either explicit (via network/DNS groups) or implicit (via lists in WebAdmin) -What is mean of this sentence please describe.
3.How IPset reduce the number of generated iptables rules...????
4.How IPset will improve memory consumption...???
Guest User!
You are not Sophos Staff.
