ACLs limts/perfs ?
Cédric Jeanneret
varnish at tengu.ch
Thu Jan 28 09:00:45 UTC 2016
Hello,
We're currently wanting to implement spamhaus "drop" and "edrop" lists
so that we can deny access to those bad networks.
In order to do so, we've created a small script that downloads those
lists, parse them and create an ACL, in for form:
acl spamhaus {
"net"/netmask;
...
}
After the whole process is finished the ACL holds more than 800 entries.
Will it be an issue for a high-traffic application? Will varnish have
some performance issues with such a long list?
If so, what do you propose as alternative? Multiple ACL blocks?
Thank you in advance for your help.
Cheers,
C.
More information about the vinyl-misc
mailing list