The Crucial Blog
December 17, 2008
If you see something like the following in your log files:
ip_conntrack: table full, dropping packet.
It will probably look like you are experiencing a network issue with a lot of packet loss, but in fact it isn’t one at all!
This error has to do with the value in /proc/sys/net/ipv4/ip_conntrack_max set to low, and letting the system only handle a few connections at once. This value is usually imposed when APF is installed, and the following should be done to correct it:
echo “138304″ > /proc/sys/net/ipv4/ip_conntrack_max
add the following to /etc/sysctl.conf:
sys.net.ipv4.ip_conntrack_max = 138304
If you are running APF modify the following line to:
To check what the current value is you can use:
cat /proc/sys/net/ipv4/ip_conntrack_maxTags: linux, networking, server-administration
Filed under: Uncategorized by — aaron @ 2:22 pm
vps ubuntu windows 2008 server virtual dedicated servers XenServer webmin virtualization gentoo security server-administration joomla system administration windows server yum cpanel microsoft centos5 debian windows raid ssh linux lxadmin firewall xen lxlabs fedora exchange wordpress storage cisco centos php hypervm control panels vds ruby-on-rails esxi vmware networking subversion fantastico mail servers apache
© Copyright 2003-2008
ABN 97 125 618 662