[MediaWiki-commits] [Gerrit] Labs: Increase labnet1001 conntrack tables - change (operations/puppet)

coren (Code Review) Mon, 23 Feb 2015 07:51:15 -0800

coren has submitted this change and it was merged.

Change subject: Labs: Increase labnet1001 conntrack tables
......................................................................



Labs: Increase labnet1001 conntrack tables

There should also be monitoring of this and, ideally, an
alert if the tables get overfull.

Bug: T72076
Change-Id: I29a48adde2fc69a967d24c5ce3613632bc5ec371
---
M modules/openstack/manifests/nova/network.pp
1 file changed, 12 insertions(+), 5 deletions(-)

Approvals:
  Yuvipanda: Looks good to me, but someone else must approve
  coren: Looks good to me, approved
  jenkins-bot: Verified



diff --git a/modules/openstack/manifests/nova/network.pp 
b/modules/openstack/manifests/nova/network.pp
index 49ec396..53a61da 100644
--- a/modules/openstack/manifests/nova/network.pp
+++ b/modules/openstack/manifests/nova/network.pp
@@ -53,16 +53,23 @@
     sysctl::parameters { 'openstack':
         values => {
             # Turn off IP filter
-            'net.ipv4.conf.default.rp_filter' => 0,
-            'net.ipv4.conf.all.rp_filter'     => 0,
+            'net.ipv4.conf.default.rp_filter'    => 0,
+            'net.ipv4.conf.all.rp_filter'        => 0,
 
             # Enable IP forwarding
-            'net.ipv4.ip_forward'         => 1,
-            'net.ipv6.conf.all.forwarding'    => 1,
+            'net.ipv4.ip_forward'                => 1,
+            'net.ipv6.conf.all.forwarding'       => 1,
 
             # Disable RA
-            'net.ipv6.conf.all.accept_ra'     => 0,
+            'net.ipv6.conf.all.accept_ra'        => 0,
+
+            # Increase connection tracking size
+            # and bucket since all of labs is
+            # tracked on the network host
+            'net.netfilter.nf_conntrack_max'     => 262144,
+            'net.netfilter.nf_conntrack_buckets' => 32768,
         },
         priority => 50,
     }
+
 }

-- 
To view, visit https://gerrit.wikimedia.org/r/190214
To unsubscribe, visit https://gerrit.wikimedia.org/r/settings

Gerrit-MessageType: merged
Gerrit-Change-Id: I29a48adde2fc69a967d24c5ce3613632bc5ec371
Gerrit-PatchSet: 2
Gerrit-Project: operations/puppet
Gerrit-Branch: production
Gerrit-Owner: coren <[email protected]>
Gerrit-Reviewer: Alexandros Kosiaris <[email protected]>
Gerrit-Reviewer: Yuvipanda <[email protected]>
Gerrit-Reviewer: coren <[email protected]>
Gerrit-Reviewer: jenkins-bot <>

_______________________________________________
MediaWiki-commits mailing list
[email protected]
https://lists.wikimedia.org/mailman/listinfo/mediawiki-commits

[MediaWiki-commits] [Gerrit] Labs: Increase labnet1001 conntrack tables - change (operations/puppet)

Reply via email to