/proc/net/ip_conntrack
David A. Bandel
david
Tue Aug 17 13:30:17 PDT 2004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Wed, 18 Aug 2004 01:11:17 +0800
"M.W. Chang" <mwchang at i-cable.com> wrote:
> M.W. Chang wrote:
>
> > Occassionally, my ip_conntrack exceeded the ip_conntrack_max. How
> > could I prevent that from happening?
> >
> > My current value of ip_conntrack_max is about 8000, and I am running
> > a relatively public bt-tracker.
> >
> > I noticed some IP have over 30 entries in ip_conntract connecting to
> > the bttracker. I don't know why they needed more than one
> > connection.
> >
> more information:
>
> root at server: scripts> grep ^tcp /proc/net/ip_conntrack | awk '{print
> $4}' | sort | uniq -c
> 61 CLOSE
> 119 CLOSE_WAIT
> 2172 ESTABLISHED
> 78 FIN_WAIT
> 68 SYN_RECV
> 4289 SYN_SENT
> 4855 TIME_WAIT
>
> Could I make those TIME_WAIT connections to get killed more promptly?
only if you modify the tcp code in the kernel (not a good idea).
Ciao,
David A. Bandel
- --
Focus on the dream, not the competition.
Nemesis Racing Team motto
GPG key autoresponder: mailto:david_key at pananix.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFBIk6ej31PLQNUbV4RAnSvAJ4i82uUQPP/yAwOg7NBE2wvbiJqjQCfcJHh
pEXx/sS9CB2Jpi2jzWy0L1U=
=4sLa
-----END PGP SIGNATURE-----
More information about the Linux-users
mailing list