CentOS

The Community ENTerprise Operating System
https://forums.centos.org/

Iptables and website performance.

https://forums.centos.org/viewtopic.php?f=17&t=72392

Page 1 of 1

Iptables and website performance.

Posted: 2019/11/05 17:34:51
by hack3rcon
Hello,
These iptables rules can cause any performance problem for a webserver?

Code: Select all

-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT 
-A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -j SYN_FLOOD 
-A SYN_FLOOD -m limit --limit 5/sec --limit-burst 10 -j RETURN 
-A SYN_FLOOD -j DROP
For example, website speed decreased.

Thanks.

Re: Iptables and website performance.

Posted: 2019/11/05 20:13:18
by jlehtone
In proper spot those rules actually improve performance. At least some of them.

I would not be conserned about performance.
The highest priority is to have correct firewall.
Then, a working webserver configuration.

If performance appears poor, then you have to find out what makes it slow.

Re: Iptables and website performance.

Posted: 2019/11/06 08:52:45
by hack3rcon
jlehtone wrote:
2019/11/05 20:13:18
 In proper spot those rules actually improve performance. At least some of them.

I would not be conserned about performance.
The highest priority is to have correct firewall.
Then, a working webserver configuration.

If performance appears poor, then you have to find out what makes it slow.
Thanks.
After these rules the website speed decreased and can't open fast!!!
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited