From 94e02c7f23d814c16f3854ec756e27ddcd0c4b27 Mon Sep 17 00:00:00 2001
From: Daniil Baturin <daniil.baturin@vyatta.com>
Date: Wed, 23 Nov 2011 21:23:20 +0700
Subject: Get conntrack default values to sync with kernel defaults.

---
 templates-cfg/system/conntrack/expect-table-size/node.def | 5 ++---
 templates-cfg/system/conntrack/node.def                   | 2 +-
 templates-cfg/system/conntrack/table-size/node.def        | 5 ++---
 3 files changed, 5 insertions(+), 7 deletions(-)

diff --git a/templates-cfg/system/conntrack/expect-table-size/node.def b/templates-cfg/system/conntrack/expect-table-size/node.def
index f9f1ae5..9ff72c7 100644
--- a/templates-cfg/system/conntrack/expect-table-size/node.def
+++ b/templates-cfg/system/conntrack/expect-table-size/node.def
@@ -7,15 +7,14 @@
 # called application level gateways [ALGs]) for more complex protocols such as
 # FTP, SIP, H.323. 
 #
-# default value when no conntrack options set - 2048
-# default value when no conntrack options set - 4096
+# default value: 2048
 #
 
 type: u32
 
 help: Size of connection tracking expect table
 
-default: 4096
+default: 2048
 
 val_help: u32: 1-50000000; Number of entries allowed in connection tracking expect table
 
diff --git a/templates-cfg/system/conntrack/node.def b/templates-cfg/system/conntrack/node.def
index 53488ae..28f78d1 100644
--- a/templates-cfg/system/conntrack/node.def
+++ b/templates-cfg/system/conntrack/node.def
@@ -3,7 +3,7 @@ help: Connection tracking engine options
 priority: 218 # before NAT and conntrack-sync are configured
 
 delete: # set conntrack table size to standard 16384 entries if conntrack settings are removed
-        sudo sysctl -q -w net/nf_conntrack_max=16384
+        sudo sysctl -q -w net/nf_conntrack_max=1638
 
         # set conntrack expect table size to standard 2048 entries if conntrack settings are removed
         sudo sysctl -q -w net/netfilter/nf_conntrack_expect_max=2048
diff --git a/templates-cfg/system/conntrack/table-size/node.def b/templates-cfg/system/conntrack/table-size/node.def
index f91b101..b44b563 100644
--- a/templates-cfg/system/conntrack/table-size/node.def
+++ b/templates-cfg/system/conntrack/table-size/node.def
@@ -11,15 +11,14 @@
 # tracking table consumes kernel memory, so the size selected should
 # be no larger than necessary.
 #
-# default value when contrack is not set - 16384
-# default value when conntrack is set - 32768
+# default value: 16384
 #
 
 type: u32
 
 help: Size of connection tracking table
 
-default: 32768
+default: 16384
 
 val_help: u32:1-50000000; Number of entries allowed in connection tracking table
 
-- 
cgit v1.2.3