Iptables and website performance.

Support for security such as Firewalls and securing linux
Post Reply
hack3rcon
Posts: 458
Joined: 2014/11/24 11:04:37

Iptables and website performance.

Post by hack3rcon » 2019/11/05 17:34:51

Hello,
These iptables rules can cause any performance problem for a webserver?

Code: Select all

-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT 
-A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -j SYN_FLOOD 
-A SYN_FLOOD -m limit --limit 5/sec --limit-burst 10 -j RETURN 
-A SYN_FLOOD -j DROP 
For example, website speed decreased.

Thanks.

User avatar
jlehtone
Posts: 2387
Joined: 2007/12/11 08:17:33
Location: Finland

Re: Iptables and website performance.

Post by jlehtone » 2019/11/05 20:13:18

In proper spot those rules actually improve performance. At least some of them.

I would not be conserned about performance.
The highest priority is to have correct firewall.
Then, a working webserver configuration.

If performance appears poor, then you have to find out what makes it slow.

hack3rcon
Posts: 458
Joined: 2014/11/24 11:04:37

Re: Iptables and website performance.

Post by hack3rcon » 2019/11/06 08:52:45

jlehtone wrote:
2019/11/05 20:13:18
In proper spot those rules actually improve performance. At least some of them.

I would not be conserned about performance.
The highest priority is to have correct firewall.
Then, a working webserver configuration.

If performance appears poor, then you have to find out what makes it slow.
Thanks.
After these rules the website speed decreased and can't open fast!!!

Post Reply

Return to “CentOS 6 - Security Support”