Am Mit, 2003-08-27 um 22.44 schrieb Erwin Ambrosch: > Hi all, > > I'm using iptables-1.2.5-3 and got the following messages in my logfile. > Please can one say me what exactly does this mean. Apparently your ip_conntrack table is full. This table has a maximum size: /proc/net/ipv4/ip_conntrack_max You can set it using echo X > /proc/net/ipv4/ip_conntrack_max Replace X with a number. Read up on conntrack_max and remember to set the hashsize for performance issues. Cheers, Ralf -- Ralf Spenneberg RHCE, RHCX Book: Intrusion Detection für Linux Server http://www.spenneberg.com IPsec-Howto http://www.ipsec-howto.org Honeynet Project Mirror: http://honeynet.spenneberg.org