Hello List,
I have noticed that when running a p2p client behind my Bering firewall
my syslog gets flooded with the message:
|firewall kernel: ip_conntrack: table full, dropping packet.|
||
Allmost all entries in /proc/net/ip_conntrack pointed to the internal
machine running the client.
|I noticed that the value in |/proc/sys/net/ipv4/ip_conntrack_max was
set to 1024. I have increased this value to 4096 which seems to have put
a (temporary?) lid on things. My question is if the increase in the
number of connections will somehow have a negative impact on the
performance of the firewall?
Any information is appreciated.
Regards
Chera Bekker
-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems? Stop! Download the new AJAX search engine that makes
searching your log files as easy as surfing the web. DOWNLOAD SPLUNK!
http://ads.osdn.com/?ad_id=7637&alloc_id=16865&op=click
------------------------------------------------------------------------
leaf-user mailing list: leaf-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/leaf-user
Support Request -- http://leaf-project.org/
