Re: ip_conntrack: maximum limit of 16368 entries exceeded

Rusty Russell (rusty@linuxcare.com.au)
Wed, 17 Jan 2001 13:13:28 +1100


In message <Pine.LNX.4.30.0101161444450.24215-100000@bigbird-ipgi.iligan.com> y
ou write:
> I got this in my logs:
>
> ip_conntrack: maximum limit of 16368 entries exceeded

It's OK, it just means that you have *alot* of connections going
through your box (or maybe you don't route both ways through your box,
which you need to do for connection tracking to work). We have to be
slow in timing out connections, but when the limit gets hit, we get
more aggressive: the algo's pretty good, so you probably won't notice
any problems.

Cheers,
Rusty.

--
http://linux.conf.au The Linux conference Australia needed.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
Please read the FAQ at http://www.tux.org/lkml/