Shazad, could it be a loop in your firewall rules? // George
On Mon, Jun 03, 2002 at 11:16:36PM +0100, Nick Drage wrote: >On Mon, Jun 03, 2002 at 11:34:32PM +0200, Rasmus B�g Hansen wrote: >> On Mon, 3 Jun 2002, Shazad Malik wrote: > >> > Jun 3 08:03:28 new kernel: ip_conntrack: table full, dropping packet. >> >> > Seriously, I going beserk now! I just have two machine sitting behind >> > my test box and just one user(thats me!). All I'm doing is surfing the >> > web. Dont have a clue why its happening! >> >> Perhaps you need a larger conntrack table? >> >> echo 32768 > /proc/sys/net/ipv4/ip_conntrack_max >> >> Be aware, that this could use a lot of memory (I don't remember how >> much). > >I think Shazad said he'd tried increasing the size of the table already. >Actually, what does > >cat /proc/sys/net/ipv4/ip_conntrack_max > >give you? > >-- >FunkyJesus System Administration Team > > -- GEORGE GEORGALIS, System Admin/Architect cell: 347-451-8229 Security Services, Web, Mail, mailto:[EMAIL PROTECTED] File, Print, DB and DNS Servers. http://www.galis.org/george
