OpenVZ Forum


Home » General » Support » ip_conntrack: CT 0: table full, dropping packet. (server gets unavailable due to this error)
Re: ip_conntrack: CT 0: table full, dropping packet. [message #37829 is a reply to message #37828] Tue, 27 October 2009 10:59 Go to previous messageGo to previous message
mavines is currently offline  mavines
Messages: 4
Registered: October 2009
Junior Member
Thanks for the answer. Obviously I did the google search for my problem. I thought it is attack - but really it is not. Even my own connections to server stays in the /proc/net/ip_conntrack for long time. As I told, I was increasing the /proc/sys/net/ipv4/ip_conntrack_max even 4x, but still this does not fix the issue. Further more, as soon as OpenVZ (service vz restart) restart - the /proc/sys/net/ipv4/ip_conntrack_max comes back to initial value. Even though I have it hard written in the /etc/sysctl.conf file. So, I am actually not able to fix the issue myself. I was trying to do this for 2 weeks long and still no good solution. Most of google search advices to increase max conntack number. I did so. Others tell that this is possibly attack - I've blocked almost the whole internet - still nothing - conntrack stack gets full once per day. So, I hope OpenVZ gurus can advice something here.

Thanks and regards,
Maksym.

Report message to a moderator

[Message index]
 
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Previous Topic: strange problem in vzdump
Next Topic: OpenVZ on SheevaPlug
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ] [ PDF ]

Current Time: Tue Nov 04 20:16:40 GMT 2025

Total time taken to generate the page: 0.09275 seconds
Powered by FUDforum Powered by Virtuozzo Containers