Keith Morse wrote:
On Thu, 23 Oct 2003, David A. Bandel wrote:
On Thu, 23 Oct 2003 15:56:14 -0700 "Simper, Brian D" <[EMAIL PROTECTED]> wrote:
I am working with a server that will act as a firewall so it will, of course, see a lot of traffic. What is the procedure for tuning Red Hat Linux 7.3 or 9.0 to increase the number of network connections the OS can accept? Is there a way to see the setting? Are there any general tuning that any of you have seen that might help?
You might want to take a look down in /proc/sys/net/ipv4/, but about the only thing that comes to mind would be ip_conntrack_max if you're using iptables connection tracking. Most of the rest should handle traffic up to and including T-3 just fine.
Except when one of my customers had 10 pc's infected with ms-blast and the main firewall is doing NAT. Brought the firewall to its knees when trying to keep up with all the outbound icmp. I haven't had to tune any kernel parameters yet, it is just the stock redhat config. Servicing about 200 or so pc's.
I would recommend fwbuilder it's a great gui interface to create a complete firewall script. Has alot of check box style tuning options.
I have been working on a sxs for it but haven't gotten around to finishing it.
http://www.jamesmcdonald.id.au/jm/tmp/fwbuilder_parent.html
-- James McDonald Singleton Australia
61+ (0)2 65712401 61+ 0428 320 219
HEY KIDS! ANN LANDERS SAYS:
Be sure it's true, when you say "I love you". It's a sin to
tell a lie. Millions of hearts have been broken, just because
these words were spoken.Linux 2.4.22 #1 Mon Sep 1 20:03:11 EST 2003 athlon i386 GNU/Linux 08:34:59 up 9:30, 1 user, load average: 0.37, 0.44, 0.39
_______________________________________________ Linux-users mailing list [EMAIL PROTECTED] Unsubscribe/Suspend/Etc -> http://smtp.linux-sxs.org/mailman/listinfo/linux-users
