Kyle Larose <kyle@xxxxxxxxxxxx> wrote: > Basically, I'm running into an issue within conntrack whereby two > packets with the same connection tuple race to enter the table. The > loser is dropped. I confirmed that I was hitting this condition by > checking the conntrack stats, which show "insert_failed" and "drop" > increasing every time the condition occurs. The counters do not > increase otherwise. Can you queue before conntrack, i.e. in raw prerouting or output?
