Philippe Vogel wrote:
Ralf Ronneburger wrote:
I've a machine with 3 real and 15 virtual interfaces under SuSE 9.0 with SuSEfirewall2. Resulting from this I've also a lot of iptable-rules (iptables-save | wc -l gives me 1068 lines).
After some weeks the machine slows down network-traffic, although everything else seems to run quite well (low CPU-load, low memory-usage), so I have to reboot it (restarting SuSEfirewall2 does not help).
I wounder if anybody else has experienced something similar, if anything of that kind is known and if anybody has an idea, where the problem may lay.
That's a lot. For help a simple routing table and some example ip's would be helpful to solve your problem. In this case it would be much easier to write your own firewallscript instead of using SuSEfirewall or let a different machine act as firewall and only set basic rules on that machine..
the setup is like this:
eth0, external interface, 15 public IPs eth1, internal interface, private IP, connected to machines with private IPs
The SuSE box routes everything from internal machines to the internet with NAT, using SuSEfirewall2 for simplicity.