ip_conntrack table full problem
Phil Oester
kernel at linuxace.com
Mon Mar 21 17:21:47 CET 2005
On Mon, Mar 21, 2005 at 03:13:59PM +0100, Thomas Jarosch wrote:
> > > I'm facing a problem with conntrack on a 2.4.21 kernel.
> > > One machine which firewalls a webradio reproducable
> > > becomes unresponsive every week with
> > > "ip_conntrack: table full, dropping packet."
> >
> > When this happens, what does output from this look like:
> >
> > wc -l /proc/net/ip_conntrack ; grep ip_conntrack /proc/slabinfo
>
> It happend again on Sunday night:
>
> wc -l:
> 35 /proc/net/ip_conntrack
>
> /proc/slabinfo:
> ip_conntrack 16263 16272 320 1356 1356 1
Yes, you're leaking conntracks somewhere. Any possibility of testing
a somewhat newer kernel than 2.4.21? This may have already been
fixed.
Phil
More information about the netfilter-devel
mailing list