How to limit conntrack sessions

Are you aware that Conntrack session exhaustion is usually due to a DDoS? Unless you normally have 58,662 active sessions (TCP Connections, UDP dstip,dstport,srcip,scrport turples)

to limit sessions

/sbin/sysctl -w net.netfilter.nf_conntrack_max=xxxx

xxxx = number

/sbin/sysctl -w net.netfilter.nf_conntrack_count

to check how many sessions

Use this command to see all of the sessions: cat /proc/net/nf_conntrack



  • 314 Users Found This Useful
Was this answer helpful?

Related Articles

HOW TO: Accessing SolusVM to control my KVM VPS

The following URLs for SolusVM can be used:https://manage.ftpit.comhttp://manage.ftpit.com...

HOW TO: Use NAT/Masquerading

Use the following command:iptables -t nat -A POSTROUTING -j SNAT --to-source YOURVPSIPReplace...

HOW TO: Install an OS Template for KVM

1. Login to SolusVM.2. Click on the "Manage" button to the right of your KVM server you wish to...

HOW TO: Installing an OS using an ISO in SolusVM

1. Login to SolusVM to manage your KVM VPS.2. Click the "Manage" button next to the KVM VPS you...

HOW TO: Cancel your service

Just follow these simple instructions:1. Login to the Client Area.2. Click on "My Services" under...