See the page you referenced below. http://www.wallfire.org/misc/netfilter_conntrack_perf.txt ons 2009-08-19 klockan 17:31 +0900 skrev Ja-Ryeong Koo: > Hello, > > I am writing this email to ask something regarding > ip_conntrack_buckets. > > My squid box is running CentOS (kernel version is 2.6.9) and has 8GB > of RAM. Since this squid has a lot of connections, I would like to > optimize it's configuration. > > By default, netfilter was setup with the following settings: > > ip_conntrack_max = 65536 > ip_conntrack_buckets = 8192 > > I was able to increase ip_conntrack_max to 262144 with the following > command: > > echo 262144 > /proc/sys/net/ipv4/netfilter/ip_conntrack_max > > I would like to increase ip_conntrack_buckets to 32768(this is > ip_conntrack_max/8) but do not know how to do this. Netfilter > conntrack is statically compiled into the kernel so I cannot set the > hash table size at module insertion. Could you show me how to set the > table hash size as a boot option? > > FYI: I've read the following document: > http://www.wallfire.org/misc/netfilter_conntrack_perf.txt but it does > not explain how to set the hash size as a boot option. It only > explains that it's possible. > > In advance, thank you for your kind consideration. > > Best Regards, > > Ja-Ryeong Koo > -- > Ja-Ryeong Koo, > Department of Computer Science, > Texas A&M University-College Station, > TX, 77843-3112, USA, > Phone: +1-979-204-8021
