what's mean? vyatta log shows following information?

2 posts / 0 new
Log in or register to post comments
Last post
Thu, 04/09/2009 - 03:43
#1
doneabc
what's mean? vyatta log shows following information?

Apr 9 16:50:32 vyatta kernel: printk: 129 messages suppressed.
Apr 9 16:50:32 vyatta kernel: nf_conntrack: table full, dropping packet.
Apr 9 16:50:37 vyatta kernel: printk: 152 messages suppressed.
Apr 9 16:50:37 vyatta kernel: nf_conntrack: table full, dropping packet.
Apr 9 16:50:42 vyatta kernel: printk: 161 messages suppressed.
Apr 9 16:50:42 vyatta kernel: nf_conntrack: table full, dropping packet.

Top
Thu, 04/09/2009 - 11:18
Permalink
robyn
what's mean? vyatta log shows following information?

Your conntrack table is overflowing. This means you either have a ton of invalid conntrack entries due to a port scan or other attack or you just have too many entries related to valid traffic and need to increase the table size.

You can view the conntrack table entries by running:

cat /proc/net/nf_conntrack

You can increase the conntrack table size by configuring:

set firewall conntrack-table-size

For more information, see the following:

https://bugzilla.vyatta.com/show_bug.cgi?id=2120

Thanks,

Robyn

Top
Log in or register to post comments