İlker Aktuna (Koç.net) wrote: > I found this document: > http://www.wallfire.org/misc/netfilter_conntrack_perf.txt > > But I am not sure which value to set. My current values are: > > [trixbox1.localdomain log]# cat > /proc/sys/net/ipv4/netfilter/ip_conntrack_max > 16384 > [trixbox1.localdomain log]# cat > /proc/sys/net/ipv4/netfilter/ip_conntrack_buckets > 2048 > > What would be a good setting ? > > And can I set it anytime ? Or should I set it when booting ?
It strikes me that if you aren't seeing allocation failures, there is no point in changing the table settings. If you search the web for 'conntrack_max', you should find lots of info about the conntrack table. To help you any further, I would have to do research on the web myself then pass the information on to you. That isn't good use of my time. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ This SF.net email is sponsored by: High Quality Requirements in a Collaborative Environment. Download a free trial of Rational Requirements Composer Now! http://p.sf.net/sfu/www-ibm-com
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
