kernel: nf_conntrack: table full, dropping packet - Code World

kernel: nf_conntrack: table full, dropping packet

Others 2019-12-17 08:38:40 views: null

Tonight system cutover, after modifying the component configuration to restart the service, the host rammed live, operating system commands can not be executed, the host can not log

After the component service is stopped, and returned to normal

View Host mesg information, a large number of kernel exception information

kernel: nf_conntrack: table full, dropping packet

This is the error message iptables "connection tracking table is full, start dropping."

(After discontinued operations) Check socket usage by ss

Total: 5281 (kernel 5488)
TCP:   3070 (estab 3031, closed 13, orphaned 0, synrecv 0, timewait 12/0), ports 1182

　　

Solution:

1, closed iptables, but security requirements, security policies must enable iptables

2, increasing the size iptables tracking table, corresponding to adjust system parameters

net.netfilter.nf_conntrack_max = 655360
net.nf_conntrack_max = 655360

65536 nf_conntrack_max default, modify the values of these two parameters in the /etc/sysctl.conf, turn up ten times

Total: 146262 (kernel 146338)
TCP:   143817 (estab 143634, closed 156, orphaned 0, synrecv 0, timewait 155/0), ports 1161

Start normal service program

Guess you like

Origin www.cnblogs.com/tonnytangy/p/12052371.html

kernel: nf_conntrack: table full, dropping packet

nf_conntrack: table full, dropping packet

Packet loss occurs on the server: kernel: nf_conntrack: table full, dropping packet

Several ideas to solve nf_conntrack: table full, dropping packet

ip_conntrack table full dropping packet Solution

Schema 'SA' does not exist and dropping table

Use nf_conntrack instead of ipset to build a knock verification program

The mysql table is full of "the table XXX is full" problem

Excel - Pivot Table - the combined packet

2.6.24.4 Kernel Network Received Packet Analysis

ASCII code table (full)

[Leetcode / letter] ectopic packet hash table (hash Map Packet)

Ball Dropping

MySQL table join query packet statistics (3)

Web full stack - the structure of the table

mysql full table scan scene

Oracle table space full processing

The table is full problem solving process

mysql has the problem of "the table is full"

The table is full problem solving process

Mybatis full table operation interceptor

Table index - full text index

Prohibition of full table deletion solution

How to avoid full table indexes

sqlserver avoids full table scan

Linux kernel protocol stack TCP server receives ACK packet

Kernel 3.10 shows the sent data packet netfilter program

Introduction to linux kernel symbol table kallsyms

Postgresql kernel source code analysis - unlogged table

Summary of Linux kernel system call table

Recommended

Apache Doris version 2.0.10 is officially released!

Open Source Daily | Big models go to war; big model unicorns are revealed to be selling themselves; Zhou Hongyi suggests that Google open source all its products; the largest open source AI community provides $10 million to share GPUs

Ranking

JS inheritance and monitoring

[ProblemSolving][Ubuntu][LyX] The selected document class ... requires external files that are not available...

Java threads sharing static variable

balancap/SSD-Tensorflow使用及训练预测自己的数据集

Detailed core ES6

JS --- reverse traversal achieved Array array, the array is connected string

How to Uninstall (or Reinstall) Windows 10’s Ubuntu Bash Shell

Linux modify the hostname method

Charging Specification BC v1.2

node的性能和java对比分析

Daily

More

2024-05-17(6)

2024-05-16(23)

2024-05-15(5)

2024-05-14(9)

2024-05-13(8)

2024-05-12(28)

2024-05-11(32)

2024-05-10(34)

2024-05-09(32)

2024-05-08(18)