diff options
author | Gaurav Sinha <gaurav.sinha@vyatta.com> | 2012-06-18 15:15:09 -0700 |
---|---|---|
committer | Gaurav Sinha <gaurav.sinha@vyatta.com> | 2012-06-18 15:15:09 -0700 |
commit | 4974478d74dffec4ca5f09bd979949f8d6b503e9 (patch) | |
tree | 75a436a5f4e7806947bd4b330b66b7820bef82e3 /templates-cfg/system/conntrack | |
parent | 88daecfaf0e5bcfb848949b5ca63e1d4f44103c6 (diff) | |
download | vyatta-conntrack-4974478d74dffec4ca5f09bd979949f8d6b503e9.tar.gz vyatta-conntrack-4974478d74dffec4ca5f09bd979949f8d6b503e9.zip |
fix 8112
Diffstat (limited to 'templates-cfg/system/conntrack')
-rw-r--r-- | templates-cfg/system/conntrack/hash-size/node.def | 2 | ||||
-rw-r--r-- | templates-cfg/system/conntrack/node.def | 12 | ||||
-rw-r--r-- | templates-cfg/system/conntrack/table-size/node.def | 2 |
3 files changed, 8 insertions, 8 deletions
diff --git a/templates-cfg/system/conntrack/hash-size/node.def b/templates-cfg/system/conntrack/hash-size/node.def index 242d0fe..b70d407 100644 --- a/templates-cfg/system/conntrack/hash-size/node.def +++ b/templates-cfg/system/conntrack/hash-size/node.def @@ -1,7 +1,7 @@ help: Hash size for connection tracking table type: u32 -default: 4096 +default: 32768 val_help: u32:1-50000000; Size of hash to use for connection tracking table diff --git a/templates-cfg/system/conntrack/node.def b/templates-cfg/system/conntrack/node.def index 211c963..0e93b52 100644 --- a/templates-cfg/system/conntrack/node.def +++ b/templates-cfg/system/conntrack/node.def @@ -2,20 +2,20 @@ help: Connection tracking engine options priority: 218 # before NAT and conntrack-sync are configured -delete: # set conntrack table size to standard 16384 entries if conntrack settings are removed - sudo sysctl -q -w net/nf_conntrack_max=16384 +delete: # set conntrack table size to standard 262144 entries if conntrack settings are removed + sudo sysctl -q -w net/nf_conntrack_max=262144 # set conntrack expect table size to standard 2048 entries if conntrack settings are removed sudo sysctl -q -w net/netfilter/nf_conntrack_expect_max=2048 - # set conntrack hash size to standard 4096 - if ! grep -q "nf_conntrack hashsize=4096$" /etc/modprobe.d/vyatta_nf_conntrack.conf + # set conntrack hash size to standard 32768 + if ! grep -q "nf_conntrack hashsize=32768$" /etc/modprobe.d/vyatta_nf_conntrack.conf then sudo sh -c "sed -i -e '/options nf_conntrack hashsize/d' \ /etc/modprobe.d/vyatta_nf_conntrack.conf" - sudo sh -c "echo options nf_conntrack hashsize=4096 >> \ + sudo sh -c "echo options nf_conntrack hashsize=32768 >> \ /etc/modprobe.d/vyatta_nf_conntrack.conf" - echo "Conntrack hash size set to default 4096. This change will take effect when the system is rebooted." + echo "Conntrack hash size set to default 32768. This change will take effect when the system is rebooted." fi # need to restart conntrackd with updated conntrack table size diff --git a/templates-cfg/system/conntrack/table-size/node.def b/templates-cfg/system/conntrack/table-size/node.def index 6b1decf..6fceb44 100644 --- a/templates-cfg/system/conntrack/table-size/node.def +++ b/templates-cfg/system/conntrack/table-size/node.def @@ -18,7 +18,7 @@ type: u32 help: Size of connection tracking table -default: 16384 +default: 262144 val_help: u32:1-50000000; Number of entries allowed in connection tracking table |