Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

IP_conntrack table full

Discussion in 'General Discussion' started by thewebhosting, May 9, 2008.

  1. thewebhosting

    thewebhosting Well-Known Member

    Joined:
    May 9, 2008
    Messages:
    1,201
    Likes Received:
    1
    Trophy Points:
    68
    Hi,

    I have a problem with IP_conntrack table. It gets full frequently and resultantly the server is unreachable. The current value is set to 34576 (which is default value I think) in ip_conntrack_max. Below is the logs provided by DC technicians:

    servers kernel: ip_conntrack: table full, dropping packet.
    servers kernel: printk: 19 messages suppressed.

    Can someone help me to resolve this issue. I have REDHAT Enterprise 5.1 i686 with WHM 11.15.0 cPanel 11.18.5-S24225.

    Thanks,
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  2. jayh38

    jayh38 Well-Known Member

    Joined:
    Mar 3, 2006
    Messages:
    1,215
    Likes Received:
    0
    Trophy Points:
    166
    Sure, here are some guidelines for adjustments:

    Rule of thumb 7000 * 64meg ram = 437500 max for 4GB ram 218750 for 2GB ram

    This tells you how many sessions arte open right now.
    cat /proc/net/ip_conntrack | wc -l

    This tells you the maximum number of conntrack entries you can have in total
    cat /proc/sys/net/ipv4/ip_conntrack_max

    Once the current open sessions go beyond the maximum number of entries, you should start seeing these messages by running dmesg
    "ip_conntrack: table full, dropping packet"

    Increase the maximum entries:
    echo "some_bigger_number>" /proc/sys/net/ipv4/ip_conntrack_max

    or if you want it to span reboots, you can place the following in /etc/sysctl.conf
    sys.net.ipv4.ip_conntrack_max =3D some_big_number

    Hope this helps
     
    #2 jayh38, May 9, 2008
    Last edited: May 9, 2008
  3. thewebhosting

    thewebhosting Well-Known Member

    Joined:
    May 9, 2008
    Messages:
    1,201
    Likes Received:
    1
    Trophy Points:
    68
    Hi jayh38,

    Thanks for the detailed information.

    Is it normal if the server exceeds to 34576 sessions?

    Thanks,
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  4. jayh38

    jayh38 Well-Known Member

    Joined:
    Mar 3, 2006
    Messages:
    1,215
    Likes Received:
    0
    Trophy Points:
    166
    Normal? hmmmm... I think its safe to say that most servers would not need an adjustment unless they are run high traffic. I have several servers that exceed this and currently I have them set at 65536 and at peak traffic time it will get close to 50k or a bit higher.

    It would be safe to assume you got some traffic there eh?
     
  5. arn

    arn Member

    Joined:
    Aug 3, 2002
    Messages:
    19
    Likes Received:
    0
    Trophy Points:
    151
    hey all,

    I'm running into the same problems. I had made the changes and even added it to my sysctl.conf file but the changes don't seem to "take".

    In that, it's ok when I manually change it, but at around 4-5am it resets back to the 31k number. CPanel seems to be running a script (cpaddons_report.pl) around that time. Not sure if directly related, but something is resetting it.

    any ideas?

    arn
     
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice