Hi, But As I have told previously, (in my previous mails), I don't have /proc file system. So it is taking the default value of 1016. Even I changed the kernel code also by hardcoding this value in init_conntrack function to 4096 but it didn't has any effect. Still it keeps dumping kernel messages. Regards, Amit -----Original Message----- From: Athan [mailto:netfilter@miggy.org] Sent: Friday, January 10, 2003 7:33 PM To: Amit Kumar Gupta Cc: netfilter@lists.netfilter.org Subject: Re: Reg iptables Connection tracking On Fri, Jan 10, 2003 at 10:33:48AM +0530, Amit Kumar Gupta wrote: > As soon as somebody pings to my m/c , that fellow doesn't get the reply > and on my m/c , kernel keeps dumping certain messages which are like > this :- > > Ip_contrack: maximum limit of 1016 entries exceeded. echo 32760 > /proc/sys/net/ipv4/ip_conntrack_max Works to increase the size of the table. I had a problem with a default of ~4092 for this when I was copying LOTS of files between machines using "get -R directory" in ncftp. The above cured it. HTH, -Ath -- - Athanasius = Athanasius(at)miggy.org / http://www.miggy.org/ Finger athan(at)fysh.org for PGP key "And it's me who is my enemy. Me who beats me up. Me who makes the monsters. Me who strips my confidence." Paula Cole - ME
**************************Disclaimer************************************************ Information contained in this E-MAIL being proprietary to Wipro Limited is 'privileged' and 'confidential' and intended for use only by the individual or entity to which it is addressed. You are notified that any use, copying or dissemination of the information contained in the E-MAIL in any manner whatsoever is strictly prohibited. ***************************************************************************************
