Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
how to change nf_conntrack_max value.....
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
dashang
n00b
n00b


Joined: 22 Jul 2011
Posts: 40

PostPosted: Sat Aug 27, 2011 12:34 pm    Post subject: how to change nf_conntrack_max value..... Reply with quote

i want to change nf_conntrack_max value....

i have search in google. i find out that to change the value of nf_conntrack_max ...

/sbin/sysctl -w net.netfilter.nf_conntrack_max = 196608

but its give me error...

Code:
[root@manage /root]# /sbin/sysctl -w net.netfilter.nf_conntrack_max = 196608
error: "net.netfilter.nf_conntrack_max" must be of the form name=value
error: Malformed setting "="
error: "196608" must be of the form name=value



please tell me how to change value of max conntrack ....
Back to top
View user's profile Send private message
taho
n00b
n00b


Joined: 26 Aug 2011
Posts: 9

PostPosted: Sat Aug 27, 2011 5:22 pm    Post subject: Reply with quote

Hi dashang

Just remove blank symbols before and after = sign

sysctl -w net.netfilter.nf_conntrack_max=196608
Back to top
View user's profile Send private message
dashang
n00b
n00b


Joined: 22 Jul 2011
Posts: 40

PostPosted: Mon Aug 29, 2011 12:43 pm    Post subject: Reply with quote

thanx sir its workinggg.....

one more problem is there...i got error when i set buckets..
Code:

[root@manage /root]# /sbin/sysctl -w net.netfilter.nf_conntrack_buckets=196608
error: permission denied on key 'net.netfilter.nf_conntrack_buckets'



my question is nf_conntrack_buckets and nf_conntrack_max ....can be equal?????
or its depends on ram size....

its create confusion to understanding nf_conntrack_max and nf_conntrack_buckets....

i want to improve my server performance because some times its give conntrack is full...server have 4gb ram
Back to top
View user's profile Send private message
taho
n00b
n00b


Joined: 26 Aug 2011
Posts: 9

PostPosted: Mon Aug 29, 2011 3:19 pm    Post subject: Reply with quote

hi

net.netfilter.nf_conntrack_buckets depends on RAM as the nf_conntrack_max and i don't recommend you to use such increased values. You can get uncontrolled state of host via network.

I don't know max value for nf_conntrack_buckets in your case (4G) but i believe it must be more lesser than nf_conntrack_max, not equal

sorry for my english.
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum