Hi All,
I have a Linux box running 2.4.20 kernel with netfilter(ip_conntrack)
compiled-in. When I do stress test on the box I find from /proc/slabinfo
that ip_conntracks have reached maximum value 131072 and box stopped
processing to any traffic, but strange thing is there are only 21 entries in
/proc/net/ip_conntrack.
My question is why are there only 21 entries in "/proc/net/ip_conntrack"
when /proc/slabinfo shows 131072 entries, does this indicate memory leaks in
netfilter code?
Please provide me some insight, hints into the problem, is there any way I
can find out rest of ip_conntracks.
Note: There are application proxies, squid(Http), POP, SMTP, FTP, running on
the Linux box.
Thanks,
Kishore
[root@Firewall root]# uname -a
Linux Firewall 2.4.20 #9 Thu Oct 30 00:49:56 PST 2003 i686 i686 i386
GNU/Linux
[root@Firewall root]# cat /proc/slabinfo | fgrep ip_conn
ip_conntrack 131072 131080 384 13108 13108 1
[root@Firewall root]#
[root@Firewall root]# cat /proc/net/ip_conntrack | wc -l
21
[root@Firewall root]#
