Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: iptables latency evaluation
Special Forums Cybersecurity iptables latency evaluation Post 302568890 by Corona688 on Friday 28th of October 2011 02:05:18 PM
Old 10-28-2011
You might have to do it statistically. Take the same reading hundreds or thousands of times, determine confidence intervals, etc.

---------- Post updated at 12:05 PM ---------- Previous update was at 12:04 PM ----------

I think there is a LOG target for iptables which might mark time, but probably not accurately enough, and would add delay of its own.
 

5 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

cp command evaluation

Hi all! I'm writting one script to copy a file in various folders, but there are 2 things to validate. First that the folder where i'll be cpying exists, and second that i have permissions to copy the file in it. so far i have found the way to validate the folder exists, but when trying to... (6 Replies)
Discussion started by: feliperivera
6 Replies

2. UNIX for Advanced & Expert Users

Determining typing latency

Hi all, When I use an editor (vi) that is spawned in a remote server, visually I could see the latency between typing a character/word and being displayed on the terminal. I could see this visually but how do I get a metric on this or how to quantify this? As expected, when I type in a editor... (6 Replies)
Discussion started by: matrixmadhan
6 Replies

3. AIX

Latency Test

Hi every one, we have a set up in solaris 8 and 9 and running many cshell scripts.. we are migrate to AIX . Now, i want to know the latency difference between two boxes(Solaris and AIX). Kindly help me to , how to do Latency test.. (0 Replies)
Discussion started by: Madhu Siddula
0 Replies

4. Solaris

Latency Test

Hi every one, we have a set up in solaris 8 and 9 and running many cshell scripts.. we are migrate to AIX . Now, i want to know the latency difference between two boxes(Solaris and AIX). Kindly help me to , how to do Latency test.. (2 Replies)
Discussion started by: Madhu Siddula
2 Replies

5. Red Hat

Memory release latency issue

I have an application that routinely alloc() and realloc() gigabyte blocks of memory for image processing applications; specifically performing rotations of huge images, or creating/ deleting huge image buffers to contain multiple images. Immediately upon completion of an operation I call free() to... (9 Replies)
Discussion started by: imagtek
9 Replies

LEARN ABOUT DEBIAN

ipkungfu

ipkungfu(8)						      System Manager's Manual						       ipkungfu(8)

NAME

       ipkungfu - An iptables-based firewall for Linux

SYNOPSIS

       ipkungfu [ -c ] [ -t ] [ -d ] [ -h ] [ -v ] [ --quiet ] [ --panic ] [ --no-caching

DESCRIPTION

       ipkungfu  is an iptables-based Linux firewall. The primary design goals are security, ease of use, and performance, in that order. It takes
       advantage of advanced features of iptables, tcpwrappers, and the Linux kernel. It also simplifies the configuration of internet	connection
       sharing, advanced routing, and other networking needs.

OPTIONS

       -c  (or	--check)
		   Check whether ipkungfu is loaded, and report any command line options it may have been loaded with.

       -t  (or	--test)
		   Runs  a configuration test, and displays the results.  Note that this does not test or display all configuration options.  This
		   gives you an opportunity to verify that major configuration options are correct before putting them into action.

       -d  (or	--disable)
		   Disables the firewall.  It is important to know exactly what this option does.  All traffic is allowed in and out, and  in  the
		   case  of  a gateway, all NATed traffic is forwarded (the option retains your connection sharing options).  Custom rules are not
		   implemented, and deny_hosts.conf is ignored.

       -f  (or	--flush)
		   Disables the firewall COMPLETELY.  All rules are flushed, all chains are removed.  Any port forwarding or  internet	connection
		   sharing will cease to work.

       -h  (or	--help)
		   Displays brief usage information and exits.

       -v  (or	--version)
		   Displays version information and exits.

       --quiet	   Runs ipkungfu with no standard output

       --panic	   Drops  ALL traffic in all directions on all network interfaces.  You should probably never use this option.	The --panic option
		   is available for the highly unusual situation where you know that an attack is underway but you know of no other  way  to  stop
		   it.

       --failsafe  If  ipkungfu fails, --failsafe will cause all firewall policies to revert to ACCEPT.  This is useful when working with ipkungfu
		   remotely, to prevent loss of remote access due to firewall failure.

       --no-caching
		   Disables rules caching feature.

FILES

       /etc/ipkungfu/ipkungfu.conf
       /etc/ipkungfu/advanced.conf
       /etc/ipkungfu/accept_hosts.conf
       /etc/ipkungfu/deny_hosts.conf
       /etc/ipkungfu/custom.conf
       /etc/ipkungfu/log.conf
       /etc/ipkungfu/redirect.conf
       /etc/ipkungfu/services.conf
       /usr/sbin/ipkungfu
       /usr/share/doc/ipkungfu/AUTHORS
       /usr/share/doc/ipkungfu/README
       /usr/share/doc/ipkungfu/FAQ
       /usr/share/doc/ipkungfu/ChangeLog
       /usr/share/doc/ipkungfu/COPYING

SEE ALSO

       iptables(8).

								   January 2003 						       ipkungfu(8)
All times are GMT -4. The time now is 03:19 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy