> Two questions regardin this strange effect: > a) Is there a performance penalty for this huge number of connections in > contracker?
Yes. This has been discussed, with possible remedies (hashsize parameter
to ip_conntrack) mentioned, about a week ago. See the thread at
http://marc.theaimsgroup.com/?l=netfilter-devel&m=101652012506915&w=2
> b) Why does it occure primarily with the Cisco Content Switch.
We cannot tell. Only a trace analyzed will be able to tell.
best regards
Patrick
