[Openstack-operators] [neutron][connection tracking] OVS connection tracking for a DNS VNF

Ajay Kalambur (akalambu) akalambu at cisco.com
Mon Feb 12 06:24:37 UTC 2018


Hi
Has anyone had any experience running a DNS VNF on Openstack. Typically for these VNFs there is a really huge volume of DNS lookups and this translates to entries for udp in the conntrack table
Sometimes under load this can lead to
nf_conntrack table being FULL
The default max on most systems for conntrack is 65536. Some forums suggest increasing this to a very large value to handle large DNS scale.
Question I have is there a way to disable OVS connection tracking on a per port basis in neutron.

Also folks running this in production do you get this working by tweaking ip_conntrack_max and udp timeout?

Ajay


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-operators/attachments/20180212/eeaec423/attachment.html>


More information about the OpenStack-operators mailing list