diff options
author | Mohit Mehta <mohit.mehta@vyatta.com> | 2010-05-20 19:27:35 -0700 |
---|---|---|
committer | Mohit Mehta <mohit.mehta@vyatta.com> | 2010-05-20 19:27:35 -0700 |
commit | a20ef215fd926de089a7ee012cccead4009ba5ba (patch) | |
tree | ca99b62a85dfafe9b490a646339db1b420541b2b /templates | |
parent | 83a291714048eba9517926961ee70c9b9d2d2a29 (diff) | |
download | vyatta-cfg-firewall-a20ef215fd926de089a7ee012cccead4009ba5ba.tar.gz vyatta-cfg-firewall-a20ef215fd926de089a7ee012cccead4009ba5ba.zip |
need to restart conntrackd when conntrack table size changes
Diffstat (limited to 'templates')
-rw-r--r-- | templates/firewall/conntrack-table-size/node.def | 5 | ||||
-rw-r--r-- | templates/firewall/node.def | 5 |
2 files changed, 9 insertions, 1 deletions
diff --git a/templates/firewall/conntrack-table-size/node.def b/templates/firewall/conntrack-table-size/node.def index 19d2b68..c0a7e9c 100644 --- a/templates/firewall/conntrack-table-size/node.def +++ b/templates/firewall/conntrack-table-size/node.def @@ -29,7 +29,10 @@ syntax:expression: ($VAR(@) >= 1 && $VAR(@) <= 50000000) ; "Value must be betwee update: sudo sh -c "echo $VAR(@) > \ /proc/sys/net/nf_conntrack_max" - + # need to restart conntrackd with updated conntrack table size + if [ -d $VYATTA_ACTIVE_CONFIGURATION_DIR/service/conntrack-sync ] ; then + sudo /opt/vyatta/sbin/vyatta-conntrack-sync.pl --action=enable + fi diff --git a/templates/firewall/node.def b/templates/firewall/node.def index daa8a51..4b825c6 100644 --- a/templates/firewall/node.def +++ b/templates/firewall/node.def @@ -16,3 +16,8 @@ delete: # set conntrack table size to standard 16384 entries if fw disabled /etc/modprobe.d/vyatta_nf_conntrack" echo "Conntrack hash size set to default 4096. This change will take affect when the system is rebooted." fi + + # need to restart conntrackd with updated conntrack table size + if [ -d $VYATTA_ACTIVE_CONFIGURATION_DIR/service/conntrack-sync ] ; then + sudo /opt/vyatta/sbin/vyatta-conntrack-sync.pl --action=enable + fi |