On 6/12/07, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
Hi, my ip_conntrack table is filling up and now my server is dropping
packets. I'm running CentOS release 4.4 (Final) on a fairly busy
webserver. The table is full of various connections, including a lot
of "ESTABLISHED" tcp connections f
If your server isn't having a problem, then why not bump up the
conntrack number? I've bumped mine up to 2097152. I can't remember
where, but I remember reading a pdf article on iptables and how many
connections a specific server with X amount of CPU's and X amount of
memory can handle.
[EMAIL
Hi Michelson, I have that problem also on one of my FW box. What i did is i
created a cronjob that reload the iptables rule. In this case you dont drop
any connections and you dont need to reboot your box. So far its working on
our production deployed FW.
Note: You need to find out how frequent y
3 matches
Mail list logo
