See the page you referenced below.
http://www.wallfire.org/misc/netfilter_conntrack_perf.txt
ons 2009-08-19 klockan 17:31 +0900 skrev Ja-Ryeong Koo:
> Hello,
>
> I am writing this email to ask something regarding
> ip_conntrack_buckets.
>
> My squid box is running CentOS (kernel version is 2.6.9) and has 8GB
> of RAM. Since this squid has a lot of connections, I would like to
> optimize it's configuration.
>
> By default, netfilter was setup with the following settings:
>
> ip_conntrack_max = 65536
> ip_conntrack_buckets = 8192
>
> I was able to increase ip_conntrack_max to 262144 with the following
> command:
>
> echo 262144 > /proc/sys/net/ipv4/netfilter/ip_conntrack_max
>
> I would like to increase ip_conntrack_buckets to 32768(this is
> ip_conntrack_max/8) but do not know how to do this. Netfilter
> conntrack is statically compiled into the kernel so I cannot set the
> hash table size at module insertion. Could you show me how to set the
> table hash size as a boot option?
>
> FYI: I've read the following document:
> http://www.wallfire.org/misc/netfilter_conntrack_perf.txt but it does
> not explain how to set the hash size as a boot option. It only
> explains that it's possible.
>
> In advance, thank you for your kind consideration.
>
> Best Regards,
>
> Ja-Ryeong Koo
> --
> Ja-Ryeong Koo,
> Department of Computer Science,
> Texas A&M University-College Station,
> TX, 77843-3112, USA,
> Phone: +1-979-204-8021
Received on Wed Aug 19 2009 - 10:08:45 MDT
This archive was generated by hypermail 2.2.0 : Wed Aug 19 2009 - 12:00:04 MDT