[pve-devel] PVE Firewall and nf_conntrack
Dietmar Maurer
dietmar at proxmox.com
Tue Dec 2 09:31:49 CET 2014
> The kernel host log is full of:
>
> [1620408.606201] net_ratelimit: 462 callbacks suppressed [1620408.606204]
> nf_conntrack: table full, dropping packet
>
> 1.) Where do we use nf_conntrack?
everywhere
> 2.) Should PVE ship with a sysctl file raising the nf conntrack limits?
You can adjust the value the the GUI (Host firewall option nf_conntrack_max)
More information about the pve-devel
mailing list