Hmm, not sure really, but lower TIME WAIT settings should keep your conntrack table afloat at least ;-) I'd rather increase ip_conntrack_max and ip_conntrack_buckets to the values suggested by David, http://www.netfilter.org/documentation/FAQ/netfilter-faq-3.html#ss3.7 On Thu, Jul 19, 2007 at 04:35:11PM -0700, Konstantin Svist wrote: > Sorry, I meant: > Which parameters are those and what values would you recommend? > > Thanks! > > > Thomas Jacob wrote: > >On Thu, Jul 19, 2007 at 04:17:20PM -0700, Konstantin Svist wrote: > > > >>How do I reduce those timers? > >> > > > >echo <VALUE> > /proc/sys/net/ipv4/netfilter/<SETTING> > > > > >
Attachment:
signature.asc
Description: Digital signature
