summaryrefslogtreecommitdiff
path: root/templates-cfg/system/conntrack
diff options
context:
space:
mode:
authorGaurav Sinha <gaurav.sinha@vyatta.com>2012-06-18 15:15:09 -0700
committerGaurav Sinha <gaurav.sinha@vyatta.com>2012-06-18 15:15:09 -0700
commit4974478d74dffec4ca5f09bd979949f8d6b503e9 (patch)
tree75a436a5f4e7806947bd4b330b66b7820bef82e3 /templates-cfg/system/conntrack
parent88daecfaf0e5bcfb848949b5ca63e1d4f44103c6 (diff)
downloadvyatta-conntrack-4974478d74dffec4ca5f09bd979949f8d6b503e9.tar.gz
vyatta-conntrack-4974478d74dffec4ca5f09bd979949f8d6b503e9.zip
fix 8112
Diffstat (limited to 'templates-cfg/system/conntrack')
-rw-r--r--templates-cfg/system/conntrack/hash-size/node.def2
-rw-r--r--templates-cfg/system/conntrack/node.def12
-rw-r--r--templates-cfg/system/conntrack/table-size/node.def2
3 files changed, 8 insertions, 8 deletions
diff --git a/templates-cfg/system/conntrack/hash-size/node.def b/templates-cfg/system/conntrack/hash-size/node.def
index 242d0fe..b70d407 100644
--- a/templates-cfg/system/conntrack/hash-size/node.def
+++ b/templates-cfg/system/conntrack/hash-size/node.def
@@ -1,7 +1,7 @@
help: Hash size for connection tracking table
type: u32
-default: 4096
+default: 32768
val_help: u32:1-50000000; Size of hash to use for connection tracking table
diff --git a/templates-cfg/system/conntrack/node.def b/templates-cfg/system/conntrack/node.def
index 211c963..0e93b52 100644
--- a/templates-cfg/system/conntrack/node.def
+++ b/templates-cfg/system/conntrack/node.def
@@ -2,20 +2,20 @@ help: Connection tracking engine options
priority: 218 # before NAT and conntrack-sync are configured
-delete: # set conntrack table size to standard 16384 entries if conntrack settings are removed
- sudo sysctl -q -w net/nf_conntrack_max=16384
+delete: # set conntrack table size to standard 262144 entries if conntrack settings are removed
+ sudo sysctl -q -w net/nf_conntrack_max=262144
# set conntrack expect table size to standard 2048 entries if conntrack settings are removed
sudo sysctl -q -w net/netfilter/nf_conntrack_expect_max=2048
- # set conntrack hash size to standard 4096
- if ! grep -q "nf_conntrack hashsize=4096$" /etc/modprobe.d/vyatta_nf_conntrack.conf
+ # set conntrack hash size to standard 32768
+ if ! grep -q "nf_conntrack hashsize=32768$" /etc/modprobe.d/vyatta_nf_conntrack.conf
then
sudo sh -c "sed -i -e '/options nf_conntrack hashsize/d' \
/etc/modprobe.d/vyatta_nf_conntrack.conf"
- sudo sh -c "echo options nf_conntrack hashsize=4096 >> \
+ sudo sh -c "echo options nf_conntrack hashsize=32768 >> \
/etc/modprobe.d/vyatta_nf_conntrack.conf"
- echo "Conntrack hash size set to default 4096. This change will take effect when the system is rebooted."
+ echo "Conntrack hash size set to default 32768. This change will take effect when the system is rebooted."
fi
# need to restart conntrackd with updated conntrack table size
diff --git a/templates-cfg/system/conntrack/table-size/node.def b/templates-cfg/system/conntrack/table-size/node.def
index 6b1decf..6fceb44 100644
--- a/templates-cfg/system/conntrack/table-size/node.def
+++ b/templates-cfg/system/conntrack/table-size/node.def
@@ -18,7 +18,7 @@ type: u32
help: Size of connection tracking table
-default: 16384
+default: 262144
val_help: u32:1-50000000; Number of entries allowed in connection tracking table