Hello, if the conntrack Limit is reached, the Machine does not accept new Connections that would end up in the Connection Tracking Table as far as i know. At least that's what i noticed. It seems that the machine slows down but it just not accept new Connection until there is Space available. greets Matthias > -----Original Message----- > From: netfilter-bounces@xxxxxxxxxxxxxxxxxxx > [mailto:netfilter-bounces@xxxxxxxxxxxxxxxxxxx]On Behalf Of Lihua Yuan > Sent: Tuesday, November 29, 2005 10:49 AM > To: netfilter@xxxxxxxxxxxxxxxxxxx > Subject: what happens after ip_conntrack_max is reached? > > > Hi, > I'm wondering what happens after ip_conntrack_max is reached? > Reading the archive, I understand the UNREPLIED entries are removed in > favor of new connection. But other than that, it seems that new > connections will simply be dropped? If this is the case, then new > clients might not be able to make a connection at all? > > > thanks for your help > Lihua > >
