On Tue, 16 Jan 2001, rtviado wrote:
> I got this in my logs:
>
> ip_conntrack: maximum limit of 16368 entries exceeded
>
> what does this mean, I know i can change the limits in
> /proc/sys/net/ipv4/ip_conntrack_max, but I want to know what this is for.
This means that iptable is tracking more than 16368 parallel connections.
Either a very busy box or some spoofed flooding.
> P.S. I looked into linux/Documentation but did not find any mention of
> this configrable parameter....
see http://netfilter.kernelnotes.org/ - seems that the in-kernel documents
are not uptodate
c'ya
sven
--The Internet treats censorship as a routing problem, and routes around it. (John Gilmore on http://www.cygnus.com/~gnu/)
- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Tue Jan 23 2001 - 21:00:12 EST