[Openstack-operators] mitigating issues with kernel-level connection tracking
Arne Wiebalck
Arne.Wiebalck at cern.ch
Wed Jul 9 08:42:59 UTC 2014
Hi,
We recently had a case of the kernel dropping packets due to a full connection tracking table ("kernel: nf_conntrack: table full, dropping packet.”).
How do people usually deal with this:
- increase the buffer size (which is what I did for now)?
- reduce tracking timeouts?
- remove connection tracking altogether?
The settings we were using so far are the defaults that come with the OS.
Thanks!
Arne
--
Arne Wiebalck
CERN IT
More information about the OpenStack-operators
mailing list