On Tue, 25 Jun 2002, Harald Welte wrote: > > But this raises one additional problem: > > 1) the hash index size and the hash total size should be configurable > > separately (get rid of that factor 8, and use a free list for the tuple > > allocation). > > 2) NAT hash sizes should also be configurable independently from conntrack. > > Normally the nat hashes are smaller than conntrack hash, since conntrack > > is based on ports, while nat is not. > > both of this is already true. look at the module loadtime parameters of > ip_conntrack.o and iptable_nat.o
One must set hashsize for the ip_conntrack module and then tweak of /proc/sys/net/ip_conntrack_max in order to get rid of the factor 8. But we do not have a module parameter yet for setting the hashsizes of iptable_nat independently. Regards, Jozsef - E-mail : [EMAIL PROTECTED], [EMAIL PROTECTED] WWW-Home: http://www.kfki.hu/~kadlec Address : KFKI Research Institute for Particle and Nuclear Physics H-1525 Budapest 114, POB. 49, Hungary
