[lvs-users] Port mapping with LVS-DR using fwmark

Jacoby Hickerson hickersonjl at gmail.com
Tue Jan 21 23:36:30 GMT 2014


Thanks again Julian that is very helpful information.  And so far enabling
IPVS nf conntrack has no adverse effect on performance after looking at the
information you provided.


On Sat, Jan 18, 2014 at 12:44 AM, Julian Anastasov <ja at ssi.bg> wrote:

>
>         Hello,
>
> On Fri, 17 Jan 2014, Jacoby Hickerson wrote:
>
> > Thanks Julian!  After enabling CONFIG_IP_VS_NFCT and setting conntrack
> to 1
> > that resolved the problem.
> > However, how leery should I be with it consuming memory?  Is there a
> test to
> > monitor this consumption?  Currently the nf_conntrack_max is set to the
> > default: 65536
>
>         cat /proc/slabinfo | grep nf_conntrack
> or 'slabtop' can show the object size used by conntracks.
> It should be 240+ bytes. You can expect one conntrack per
> IPVS connection. You can also see conntracks with
> cat /proc/net/nf_conntrack | less
>
>         cat /proc/sys/net/netfilter/nf_conntrack_count shows
> the current number of conntracks. You can look for 'count'
> at __nf_conntrack_alloc() and nf_conntrack_free() to see
> how it is implemented.
>
> Regards
>
> --
> Julian Anastasov <ja at ssi.bg>
>


More information about the lvs-users mailing list