Firewall (iptables) Rules

Posted on 2003-03-22
Medium Priority
Last Modified: 2013-11-16
I've installed one linux pc and one windows 98 at home. The linux box serves as a gateway to the Internet connection. Currently, I'm trying to mess around with the ip filtering (iptables) stuffs on the linux box.  my question is:
Does the ip filtering rules have any effect on the speed of the internet connection (particularly web surfing)? It seems that the web pages are loaded faster without any ip filtering rules than with ip filtering rules, is this true? Anyone can provide some sample rules for the web surfing (for INPUT,OUTPUT,and FORWARD chain)?
thank you.
Question by:viansoo
1 Comment

Accepted Solution

romeo_ earned 75 total points
ID: 8189455

Here you can find a tutorial. It's a complete one.


About your question regarding the speed... I'm not sure but I think about two things:
1. if you discard some brodcast messages from an early stage in the kernel, things could get better
2. you have to think twice when you make your roules (see the tutorial) - it's good to not let the packets travel to all your chains if it is not necessary to do that
3. if you do filtering it's logic to slow a little bit the traffic ...


Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article will show how Aten was able to supply easy management and control for Artear's video walls and wide range display configurations of their newsroom.
Tech spooks aren't just for those who are tech savvy, it also happens to those of us running a business. Check out the top tech spooks for business owners.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

621 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question