linux.gentoo.user
back to index
Group: linux.gentoo.user
From: Adam Carter
Date: Tuesday, March 25, 2008 1:20 AM
Subject: RE: [gentoo-user] Gentoo router: Conntrack table full
From: Adam Carter
Date: Tuesday, March 25, 2008 1:20 AM
Subject: RE: [gentoo-user] Gentoo router: Conntrack table full
The contents of the connection table is in
/proc/net/ip_conntrack
Example:
tcp 6 65 TIME_WAIT src=3D192.168.1.4 dst=3D20.x.y.40 sport=3D4986 dpor=
t=3D80 src=3D207.46.109.40 dst=3D192.168.1.4 sport=3D80 dport=3D4986 [ASSUR=
ED] mark=3D0 use=3D1
So go nuts with grep/awk/sed/sort/uniq etc to find what is consuming all th=
e connections.
+1 for what Mike said about dropping the timeouts to something more sensibl=
e. FWIW Checkpoint uses a default TCP timer of 1 hour. Use 4 hours to be co=
nservative.
--
gentoo-user@lists.gentoo.org mailing list
