Hello,all.
I have operated iptables firewall which RAM size is 1Giga.
and set the number of the "ip_conntrack_max" to about 40,000. but after
some time I can see lots of "ip_conntrack: table full, dropping packet."
message.
So I reset the the number to about 70,000 and the problem was solved.
1. So I would like to know the max number of the "ip_conntrack_max" at
1Giga RAM?
2. When I set this number so high, then the system affects or not?
(I have heard that about 350 byte per one connection tracking, right?)
Thanks in advance for your kind answer.
_________________________________________________________________
MSN Messenger를 통해 온라인상에 있는 친구와 대화를 나누세요.
http://messenger.msn.co.kr
