"
I want to say thanks to this effort.
I was experiencing a similar problem playing around with IDS/IPS rules.
Turns out even if you disable a rule, it keeps it in the config file.
I had a 160K line config file, even with the rules disabled, which added up to about 5 megs.
Parsing that file turned out to be a big chore even for 8 cores, 16 gigs of RAM, and an SSD.
Consolidating everything into a single config file does seem to have its limitations, especially if its not maintained well.
I was experiencing a similar problem playing around with IDS/IPS rules.
Turns out even if you disable a rule, it keeps it in the config file.
I had a 160K line config file, even with the rules disabled, which added up to about 5 megs.
Parsing that file turned out to be a big chore even for 8 cores, 16 gigs of RAM, and an SSD.
Consolidating everything into a single config file does seem to have its limitations, especially if its not maintained well.
