Le 12/02/2017 à 12:12, webman@xxxxxxxxxxxx a écrit :
My current work is around conntrack. The first I've found is, that some required configuration variables are not set by default: net.netfilter.nf_conntrack_acct = 1 net.netfilter.nf_conntrack_timestamp = 1 I added these to "/etc/sysctl.conf", but after a reboot, these are NOT set. I am looking for a workaround to set these variables. I am on Debian Jessie 8.6 (3.16.0-4-amd64) with conntrack 1.4.
Did you make sure that the nf_conntrack module is loaded before /etc/sysctl.conf is used, e.g. by adding it to /etc/modules ? Otherwise the sysctls do not exist yet.
Also, you can set these variables with module parameters 'tstamp' and 'acct' when loading the module, e.g. in /etc/modules :
nf_conntrack acct=1 tstamp=1 or in a /etc/modprobe.d/*.conf file with an 'options' statement : options nf_conntrack acct=1 tstamp=1 -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
