ip_contrack
Orlando Reis
oreis@student.dei.uc.pt
Sun, 29 Jul 2001 06:08:41 +0100 (WEST)
Hi, some time ago I sent a message here, I had a problem with IP_CONTRACK,
at the time it was something like IP_CONTRACK FULL DROPING PACKET.
I did what someone here told me to do, wich was to load and unload the
iptables modules every 2 hours, it worked for a while. Now the problem is
diferent, all my users are complaining cause they can't do downloads off
bigger files, and in /var/log/messages i had
Jul 29 06:26:01 proxy kernel: ip_conntrack (512 buckets, 4096 max)
Jul 29 06:26:01 proxy kernel: ip_tables: (c)2000 Netfilter core team
But if I do a cat off
[root@proxy /root]# cat /proc/sys/net/ipv4/ip_conntrack_max
16304
That was part off what I was told to do, so what is the problem? Can I
configure the time each connection is tracked, and if I can, can it help
me solve my problem?
Thanks in advance for the time taken. With regards
Orlando Reis