Firewall (iptables) Rules

Posted on 2003-03-22
Medium Priority
Last Modified: 2013-11-16
I've installed one linux pc and one windows 98 at home. The linux box serves as a gateway to the Internet connection. Currently, I'm trying to mess around with the ip filtering (iptables) stuffs on the linux box.  my question is:
Does the ip filtering rules have any effect on the speed of the internet connection (particularly web surfing)? It seems that the web pages are loaded faster without any ip filtering rules than with ip filtering rules, is this true? Anyone can provide some sample rules for the web surfing (for INPUT,OUTPUT,and FORWARD chain)?
thank you.
Question by:viansoo
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment

Accepted Solution

romeo_ earned 75 total points
ID: 8189455

Here you can find a tutorial. It's a complete one.


About your question regarding the speed... I'm not sure but I think about two things:
1. if you discard some brodcast messages from an early stage in the kernel, things could get better
2. you have to think twice when you make your roules (see the tutorial) - it's good to not let the packets travel to all your chains if it is not necessary to do that
3. if you do filtering it's logic to slow a little bit the traffic ...


Featured Post

Ransomware Attacks Keeping You Up at Night?

Will your organization be ransomware's next victim?  The good news is that these attacks are predicable and therefore preventable. Learn more about how you can  stop a ransomware attacks before encryption takes place with our Ransomware Prevention Kit!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Short answer to this question: there is no effective WiFi manager in iOS devices as seen in Windows WiFi or Macbook OSx WiFi management, but this article will try and provide some amicable solutions to better suite your needs.
This program is used to assist in finding and resolving common problems with wireless connections.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Suggested Courses

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question