On Thursday 21 February 2008 17:41:08 Oscar N wrote:
> Maybe this is what you're looking for?
> /proc/sys/net/ipv4/ip_conntrack_max
For the sake of completeness, for my kernel compiled with "Layer 3 independent
connection tracking" (as it is the default since Linux 2.6.20 IIRC) the
equivalent is
/proc/sys/net/netfilter/nf_conntrack_max
for the maximum number of entries and
/proc/sys/net/netfilter/nf_conntrack_{tcp,udp,icmp,icmpv6,frag6}_timeout*
for the various timeouts.
I doubt that an embedded device runs such a new kernel, but maybe the kernel
still is compiled with the new connection tracking framework to support
stateful IPv6 filtering.
Benedikt
-
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
