Using CPF behind a NAT Router.

Since I am behind a NAT router, which has it’s own firewall, I am pretty much protected from any inbound attacks.

As such, is there anything in CPF I can disable that deals with inbound ‘stuff’ that might get me better performance or perhaps reduce the memory footprint of CPF?


i dont think deleting inbound rules is a good thing. For sure, behind a NAT router, you are much protected from outside (i hope your are not in the DMZ ;D).

More over, i think that deleting some rules won’t downsize the memory foot print of CPF.

IMO, do not delete inbound rules.