netfilter: conntrack: adjust nf_conntrack_buckets default value
authorMarcelo Leitner <mleitner@redhat.com>
Wed, 3 Dec 2014 19:30:19 +0000 (17:30 -0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Tue, 23 Dec 2014 13:20:10 +0000 (14:20 +0100)
commit88eab472ec21f01d3e36ff926f8bd4f742687075
tree3ebb077b443fe502e813c1b9fe06eb376bcdb183
parentf96fe225677b3efb74346ebd56fafe3997b02afa
netfilter: conntrack: adjust nf_conntrack_buckets default value

Manually bumping either nf_conntrack_buckets or nf_conntrack_max has
become a common task as our Linux servers tend to serve more and more
clients/applications, so let's adjust nf_conntrack_buckets this to a
more updated value.

Now for systems with more than 4GB of memory, nf_conntrack_buckets
becomes 65536 instead of 16384, resulting in nf_conntrack_max=256k
entries.

Signed-off-by: Marcelo Ricardo Leitner <mleitner@redhat.com>
Acked-by: Jesper Dangaard Brouer <brouer@redhat.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Documentation/networking/nf_conntrack-sysctl.txt
net/netfilter/nf_conntrack_core.c