/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! /* ALSO: Don't quote this header. It makes you look lame :-) */
yes this is exactly what happends. cat /proc/net/ip_conntrack | wc -l gives me 145 and cat /proc/sys/net/ipv4/ip_conntrack_max 32720 The linux box is PIV 1.8 with 512 of ram what is the max ip_conntrack_max can i use? thanks a lot Julian de Anquin Consultor Sarmiento 71 - 2o Piso of. 8 x5000EYA - Cordoba - Argentina (54-0351) 4254394 4242545 [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> www.ayi.asociados.com -----Mensaje original----- De: Fuzzy Fox [mailto:[EMAIL PROTECTED] Enviado el: Jueves, 24 de Julio de 2003 01:52 p.m. Para: Julian Eduardo de Anquin CC: [EMAIL PROTECTED] Asunto: Re: Problem Julian Eduardo de Anquin <[EMAIL PROTECTED]> wrote: > > I'm having some troubles in my network. I have a masquerade server, > to provide internet access to my lan. Spontaneously some computers in > the network cant access the internet, while others can. This could indicate that your connection table is filling up. If that happens, hosts that have an established connection can continue to use the net, but hosts trying to open new connections will fail. Is that what you see? Your best source of information is the firewall itself. Login and check system logs, "dmesg" output, and see if anything suspicious shows up. You can examine the connection table with cat /proc/net/ip_conntrack You can just get a count of how many connections there are with cat /proc/net/ip_conntrack | wc -l If the table is huge, you would need to examine it by hand to see what hosts and IP's are causing all the connections. -- [EMAIL PROTECTED] (Fuzzy Fox) || "Good judgment comes from experience. sometimes known as David DeSimone || Experience comes from bad judgment." _______________________________________________ Masq maillist - [EMAIL PROTECTED] Admin requests can be handled at http://www.indyramp.com/masq-list/ -- THIS INCLUDES UNSUBSCRIBING! or email to [EMAIL PROTECTED] PLEASE read the HOWTO and search the archives before posting. You can start your search at http://www.indyramp.com/masq/ Please keep general linux/unix/pc/internet questions off the list.
