Re: [LARTC] neighbor table overflow
skip / # Added to stop neighbor table overflow messages in the kernel net.ipv4.neigh.default.gc_thresh1=512 net.ipv4.neigh.default.gc_thresh2=2048 net.ipv4.neigh.default.gc_thresh3=4096 # Added to increase IP contrack number (was getting to max) net.ipv4.ip_conntrack_max=9 to sysctl.conf to increase the size, but this only seems to delay the problem. Any thoughts? skip / try arpd? -- Peter V. Saveliev ___ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
Re: [LARTC] bridge or vlan
On 10/22/07 15:50, Vaidas M wrote: Thanks for your answer, this would help. You are welcome. I think I know how to block arp: -p ARP -j DROP something like that, ant the broadcasts: --pkttype-type ... Be careful blocking all ARP / broadcasts. Remember that equipment will need to ARP to find the router, at least from the two LANs that are not common with the router. You will probably want to allow ARPs to the router's IP address (and any other common equipment) and block all others. Grant. . . . ___ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
Re: [LARTC] neighbor table overflow
On 10/22/07 16:46, Peter V. Saveliev wrote: try arpd? You took the statement right out from under my finger tips. Grant. . . . ___ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc