Hello
I''ve got a server with 3Gb of ram and I want to keep 256 for the
system
and allocate the rest to conntrack ...
I''ve tried to change the HASHSIZE of the ip_conntrack but dmesg
return me this error !
ip_conntrack version 2.4 (2097152 buckets, 16777216 max) - 236 bytes per
conntrack
ip_conntrack: falling back to vmalloc.
....
I''ve use this "math" to calculate it :
(3072 - 256) x 1024^2 - 236 = 12511822,1027
The near "power of 2" seems to be 2^23 = 8388608
With this result I''ve change my "sysctl.conf" file
net.ipv4.netfilter.ip_conntrack_max = 8388608
net.ipv4.netfilter.ip_conntrack_tcp_timeout_established= 28800
and I''ve to change the HASHSIZE to ip_conntrack_max / 4 ...
What is wrong ! How can I solve the problem ...
I''m waiting for a server with 8Gb (8192) of ram most of available to
use with conntrack !
Regards
