On Tue, 13 Mar 2012 07:27:14 -0700 Tom Eastep <[email protected]> wrote:
> >> did you mean, that should it work generally or should I use > >> something like this: # echo "sysctl -w > >> net.nf_conntrack_max=131072" >> /etc/shorewall/start? > > > > Using /etc/sysctl.conf should work for shorewall too. > > > > But I have confirmed that it doesn't. > > Adding this to /etc/shorewall/init seems to do the job: > > /sbin/sysctl -e -p /etc/sysctl.conf I also verified that this _does_ work: net.netfilter.nf_conntrack_max = 32768 but my system does run shorewall-init. I guess running it for shorewall does change things. -- Tuomo Soini <[email protected]> Foobar Linux services +358 40 5240030 Foobar Oy <http://foobar.fi/>
signature.asc
Description: PGP signature
------------------------------------------------------------------------------ Keep Your Developer Skills Current with LearnDevNow! The most comprehensive online learning library for Microsoft developers is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, Metro Style Apps, more. Free future releases when you subscribe now! http://p.sf.net/sfu/learndevnow-d2d
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
