Knowledgebase

Portal Home > Knowledgebase > Articles Database > change ip_conntrack value for centos 6

change ip_conntrack value for centos 6

Posted by takserver, 07-07-2015, 03:10 AM

I need hight ip_conntrack for my centos 6 iptables. I increase this limit by following command and its fixed correctly: sysctl -w net.nf_conntrack_max=100000 For make this settings permanent i put following line to /etc/sysctl.conf file: net.nf_conntrack_max = 100000 I dont know how, but after some days its will back to the defauld value (65536). How can i fix this problem permanently?

---

Posted by MilesWeb, 07-07-2015, 03:53 AM

Kindly have a check at https://bugzilla.redhat.com/show_bug.cgi?id=552522 once. It should help you :-)

---

Posted by takserver, 07-07-2015, 05:23 AM

Thank you for your reply. I using CSF, what will be if i change "IPTABLES_MODULES_UNLOAD" value to no?

---

Posted by Srv24x7, 07-08-2015, 10:35 AM

Hi, This option unload modules on csf start and stop. Setting it to 'yes' will ensure same state for a firewall restart or stop. You should only set it to 'no' if there are problems unloading netfilter modules.

---

Add to Favourites    Print this Article

Offering registration of domain names? (Views: 643)

Calpop down? (Views: 655)

CoolHandle down? (Views: 649)

What to do??? (Views: 603)

High Dom0 memory usage on xen (Views: 622)