* Changing the amount of tokens in the conntrack
@ 2003-11-03 14:11 GoMi
2003-11-03 21:28 ` Jörg Schütter
2003-11-04 3:26 ` Edmund Turner
0 siblings, 2 replies; 4+ messages in thread
From: GoMi @ 2003-11-03 14:11 UTC (permalink / raw)
To: netfilter
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi there, its my first email to the list, so i will explan a little bit my setup:
I have a linux box with 1GB RAM Athlon 1.8GHz and 3 eth cards.
______
eth2 | |eth0
LAN (300 users) <----->| |<--->ADSL 2Mbit
| |<--->ADSL 2MBit
|______|eth1
I am doing load balancing at the moment, but thats nothing to worry about since it works great. I am also using a QoS setup based on HTB and SFQ queues, and due to the load balancing i have a stateful firewall.
Some aplications my users use quite often, like msn messenger, kazaa or other p2p automatically disconnects themselves. I have comed to the conclusion thats because of the amount of simultaneous connections the box can handle. So i want to change the amount of tokens the conntrack is using.
I have the conntrack module built-in the kernel, hence i am driving myself mad to find a way to increase this value. Does anybody knows how to change that?
Thank you very much,in advanced. If any of you knows anything i could change as well to improve my setup, i am welcome to suggestions
-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0
iQA/AwUBP6ZiAH7diNnrrZKsEQIyDACgxXIQFfnhkV+P/tsR7En9MV/SRvcAoKv9
i5lAQ8zmkBchxO9gDk453AZZ
=hKV4
-----END PGP SIGNATURE-----
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: Changing the amount of tokens in the conntrack
2003-11-03 14:11 Changing the amount of tokens in the conntrack GoMi
@ 2003-11-03 21:28 ` Jörg Schütter
2003-11-04 3:26 ` Edmund Turner
1 sibling, 0 replies; 4+ messages in thread
From: Jörg Schütter @ 2003-11-03 21:28 UTC (permalink / raw)
To: netfilter
Hallo GoMi,
On Mon, 3 Nov 2003 15:11:13 +0100
"GoMi" <gomi@perezoso.net> wrote:
[...]
> I have the conntrack module built-in the kernel, hence i am driving
> myself mad to find a way to increase this value. Does anybody knows
> how to change that?
take a look at the end of
http://iptables-tutorial.frozentux.net/iptables-tutorial.html#THECONNTRACKENTRIES
Jörg
--
Jörg Schütter http://www.lug-untermain.de/
joerg@schuetter.org http://www.schuetter.org/joerg/
ICQ: 298982789 http://mypenguin.bei.t-online.de/
^ permalink raw reply [flat|nested] 4+ messages in thread
* RE: Changing the amount of tokens in the conntrack
2003-11-03 14:11 Changing the amount of tokens in the conntrack GoMi
2003-11-03 21:28 ` Jörg Schütter
@ 2003-11-04 3:26 ` Edmund Turner
1 sibling, 0 replies; 4+ messages in thread
From: Edmund Turner @ 2003-11-04 3:26 UTC (permalink / raw)
To: 'GoMi', netfilter
Your max setting on the conntrack table can be seen at:
> cat /proc/sys/net/ipv4/ip_conntrack_max
>
> Your current number of entries in the conntrack table can
> be found like this:
> cat /proc/net/ip_conntrack | wc -l
>
> Now, you have 2 choices on how to sort this out...
>
> 1) raise the limit in /proc/net/ip_conntrack
> To raise that limit:
> echo ## > /proc/net/ip_conntrack
> (where ## is the new max you wish to set).
>
-----Original Message-----
From: netfilter-admin@lists.netfilter.org
[mailto:netfilter-admin@lists.netfilter.org] On Behalf Of GoMi
Sent: Monday, November 03, 2003 10:11 PM
To: netfilter@lists.netfilter.org
Subject: Changing the amount of tokens in the conntrack
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi there, its my first email to the list, so i will explan a little bit
my setup:
I have a linux box with 1GB RAM Athlon 1.8GHz and 3 eth cards.
______
eth2 | |eth0
LAN (300 users) <----->| |<--->ADSL 2Mbit
| |<--->ADSL 2MBit
|______|eth1
I am doing load balancing at the moment, but thats nothing to worry
about since it works great. I am also using a QoS setup based on HTB and
SFQ queues, and due to the load balancing i have a stateful firewall.
Some aplications my users use quite often, like msn messenger, kazaa or
other p2p automatically disconnects themselves. I have comed to the
conclusion thats because of the amount of simultaneous connections the
box can handle. So i want to change the amount of tokens the conntrack
is using.
I have the conntrack module built-in the kernel, hence i am driving
myself mad to find a way to increase this value. Does anybody knows how
to change that?
Thank you very much,in advanced. If any of you knows anything i could
change as well to improve my setup, i am welcome to suggestions
-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0
iQA/AwUBP6ZiAH7diNnrrZKsEQIyDACgxXIQFfnhkV+P/tsR7En9MV/SRvcAoKv9
i5lAQ8zmkBchxO9gDk453AZZ
=hKV4
-----END PGP SIGNATURE-----
^ permalink raw reply [flat|nested] 4+ messages in thread
* RE: Changing the amount of tokens in the conntrack
2003-10-28 11:21 RV: " GoMi
@ 2003-10-31 8:43 ` Edmund Turner
0 siblings, 0 replies; 4+ messages in thread
From: Edmund Turner @ 2003-10-31 8:43 UTC (permalink / raw)
To: netfilter
This was answered by a previous thread not to long ago.
>>Security <security@ezsm.net> wrote:
Your max setting on the conntrack table can be seen at:
> cat /proc/sys/net/ipv4/ip_conntrack_max
>
> Your current number of entries in the conntrack table can
> be found like this:
> cat /proc/net/ip_conntrack | wc -l
>
> Now, you have 2 choices on how to sort this out...
>
> 1) raise the limit in /proc/net/ip_conntrack
> To raise that limit:
> echo ## > /proc/net/ip_conntrack
> (where ## is the new max you wish to set).
-----Original Message-----
From: netfilter-admin@lists.netfilter.org
[mailto:netfilter-admin@lists.netfilter.org] On Behalf Of GoMi
Sent: Tuesday, October 28, 2003 7:22 PM
To: netfilter@lists.netfilter.org
Subject: RV: Changing the amount of tokens in the conntrack
-----Mensaje original-----
De: GoMi [mailto:gomi@arrakis.es]
Enviado el: martes, 28 de octubre de 2003 12:21
Para: 'netfilter@lists.netfilter.org'
Asunto: Changing the amount of tokens in the conntrack
Hi there, its my first email to the list, so i will explan a little bit
my setup:
I have a linux box with 1GB RAM Athlon 1.8GHz and 3 eth cards.
______
eth2 | |eth0
LAN (300 users) <----->| |<--->ADSL 2Mbit
| |<--->ADSL 2MBit
|______|eth1
I am doing load balancing at the moment, but thats nothing to worry
about since it works great. I am also using a QoS setup based on HTB and
SFQ queues, and due to the load balancing i have a stateful firewall.
Some aplications my users use quite often, like msn messenger, kazaa or
other p2p automatically disconnects themselves. I have comed to the
conclusion thats because of the amount of simultaneous connections the
box can handle. So i want to change the amount of tokens the conntrack
is using.
I have the conntrack module built-in the kernel, hence i am driving
myself mad to find a way to increase this value. Does anybody knows how
to change that?
Thank you very much,in advanced. If any of you knows anything i could
change as well to improve my setup, i am welcome to suggestions
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2003-11-04 3:26 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2003-11-03 14:11 Changing the amount of tokens in the conntrack GoMi
2003-11-03 21:28 ` Jörg Schütter
2003-11-04 3:26 ` Edmund Turner
-- strict thread matches above, loose matches on Subject: below --
2003-10-28 11:21 RV: " GoMi
2003-10-31 8:43 ` Edmund Turner
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.