10 May 2012

nf_conntrack: table full, dropping packet.

I was getting a lot of errors like this one in dmesg and /var/log/syslog:
nf_conntrack: table full, dropping packet.
It seems that the easy fix was to increase the /proc/sys/net/netfilter/nf_conntrack_max from 31928, in my case, to 65536. In order to do that, I used these commands on live system:
sysctl -w net.netfilter.nf_conntrack_max=65536
To have them after the reboot, I added in /etc/sysctl.conf the following line:
net.netfilter.nf_conntrack_max=65536

No comments:

Post a Comment