This is a multi-part message in MIME format. ------=_NextPart_000_013A_01C38224.35D8A590 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable How many connections can be tracked with: 512 megabytes of RAM? 1 gigabyte of RAM? I know there is a limit. I read it somewhere about eight months ago in some= obscure location.=20 Thanks in advance. Walt ***************************************************************************= ******************* * This message has been scanned by CityNET's email scanner for viruses and = dangerous content * * and is believed to be clean. CityNET is proud to use MailScanner. For m= ore information * * concerning MailScanner, visit http://www.mailscanner.info = * ***************************************************************************= ******************* ------=_NextPart_000_013A_01C38224.35D8A590 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META http-equiv=3DContent-Type content=3D"text/html; charset=3Diso-8859-1"> <META content=3D"MSHTML 6.00.2800.1226" name=3DGENERATOR> <STYLE></STYLE> </HEAD> <BODY bgColor=3D#ffffff> <DIV><FONT face=3DArial size=3D2>How many connections can be tracked=20 with:</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>512 megabytes of RAM?</FONT></DIV> <DIV><FONT face=3DArial size=3D2>1 gigabyte of RAM?</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>I know there is a limit. I read it somewhe= re about=20 eight months ago in some obscure location. </FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>Thanks in advance.</FONT></DIV> <DIV><FONT face=3DArial size=3D2>Walt</FONT></DIV></BODY><br> <br> <table border=3D"1" cellpadding=3D"0" cellspacing=3D"0" width=3D"100%" bord= ercolor=3D"#800000"> <tr> <td width=3D"100%"> <p align=3D"center"> This message has been scanned by CityNET's = email scanner for viruses and dangerous content <br> and is believed to be clean. CityNET is proud to use MailScann= er. For more information <br> concerning MailScanner, visit http://www.mailscanner.info</td> </tr> </table> </HTML> ------=_NextPart_000_013A_01C38224.35D8A590--
On Wednesday 24 September 2003 04:44, Walter D. Wyndroski wrote: > How many connections can be tracked with: > > 512 megabytes of RAM? > 1 gigabyte of RAM? > > I know there is a limit. I read it somewhere about eight months ago in so= me > obscure location. =46rom the faq page on netfilter.org : 3.6 ip_conntrack: maximum limit of XXX entries exceeded=20 If you notice the following message in syslog, it looks like the conntrack= =20 database doesn't have enough entries for your environment. Connection=20 tracking by default handles up to a certain number of simultaneous=20 connections. This number is dependent on you system's maximum memory size (= at=20 64MB: 4096, 128MB: 8192, ...).=20 You can easily increase the number of maximal tracked connections, but be=20 aware that each tracked connection eats about 350 bytes of non-swappable=20 kernel memory! To increase this limit to e.g. 8192, type: echo "8192" > /proc/sys/net/ipv4/ip_conntrack_max Stef =2D-=20 stef.coene@docum.org "Using Linux as bandwidth manager" http://www.docum.org/ #lartc @ irc.openprojects.net