Hi, On Tuesday 27 December 2005 17.22, DEXTER wrote: > Why isn't there any documentation on how linux handles free, and > occupied ports on a NAT box, how to fine tune the box when lots of user > are behind it, etc..? > > So my question is: How to handle this situation? I mean, just 1 NAT > linux box is able to handle all the 400+ users with the above > situations? Or we have to do something like CONNLIMIT on source ips? Is > there possibilities to balance the traffic on 2 or more NAT box? Whether or not your NAT box will be able to handle the situation mainly depends on your traffic pattern and available uplink bandwidth. For 400+ users the number of available ports on a single IP seems to be a serious limitation, so first of all you'd probably have to get multiple routable IP addresses and share connections between those multiple public IPs. The algorithm Netfilter uses to balance connections between multiple public IPs depends on the kernel version, so it's hard to say more about this without this crucial piece of information. -- KOVACS Krisztian
