Hi Alex. On Thursday, 07 May 2009 15:45:03 +1000, Alex Samad wrote: > > I added the following line in the file /etc/sysctl.conf > > > > net.ipv4.netfilter.ip_conntrack_max = 32768 > > > > in order to modify the value of ip_conntrack_max in boot time, but I > > obtain the following error message: > > > > error: "net.ipv4.ip_conntrack_max" is an unknown key > > > > My impression is that this error must to that it is being tried to > > assign the variable before shorewall load the kernel module. Is it > > possible? Of being this case, is there some way to coordinate the > > setting of the variable with shorewall? > yes & yes, you need to make debian load the module before it runs > /etc/init.d/procps > > have a look in /etc/modules and you might also need to > update-initramfs -u as well. I tried adding the line nf_conntrack (I consider that it is the appropriate name for the module to load with a kernel 2.6.26) and to update-initramfs -u as well, but this didn't work. On the other hand, it seems that even though that the name of the module has changed, the name of the variable continues maintaining the name of the previous module. > or add it (sysctl -w net.ipv4.ip_conntrack_max=<number>) to > /etc/init.d/rc.local I suppose that you would talk about /etc/rc.local. Adding the previous line there, it worked perfectly. Thanks for your reply. Regards, Daniel -- Fingerprint: BFB3 08D6 B4D1 31B2 72B9 29CE 6696 BF1B 14E6 1D37 Powered by Debian GNU/Linux Squeeze - Linux user #188.598
Attachment:
signature.asc
Description: Digital signature