kernel: ip_conntrack: table full, dropping packet.

ARUN Post in FIREWALL
0

Getting the below messages in /var/log/messages

Mar 4 08:09:41 server kernel: ip_conntrack: table full, dropping packet.

Solution:

http://admin.webhostingdevelopment.com/posting.php?mode=post&f=85

You might need to increase the ip_conntrack_max value.

To check the current value of  “ip_conntrack_max”

cat /proc/sys/net/ipv4/ip_conntrack_max
How to increase the value???
cp -ar /etc/sysctl.conf /etc/sysctl.conf.bak
vi /etc/sysctl.conf
Add or edit the field below and give the appropriate value
net.ipv4.netfilter.ip_conntrack_max = 
Tested with 131072 and when I received error with 65536 and it fixed
« Prev: :Next »

Leave a Reply

You must be logged in to post a comment.