summaryrefslogtreecommitdiffstats
path: root/doc/sync/notrack/conntrackd.conf
diff options
context:
space:
mode:
Diffstat (limited to 'doc/sync/notrack/conntrackd.conf')
-rw-r--r--doc/sync/notrack/conntrackd.conf14
1 files changed, 9 insertions, 5 deletions
diff --git a/doc/sync/notrack/conntrackd.conf b/doc/sync/notrack/conntrackd.conf
index f86d17b..b77d589 100644
--- a/doc/sync/notrack/conntrackd.conf
+++ b/doc/sync/notrack/conntrackd.conf
@@ -125,15 +125,19 @@ Sync {
#
General {
#
- # Number of buckets in the caches: hash table.
+ # Number of buckets in the cache hashtable. The bigger it is,
+ # the closer it gets to O(1) at the cost of consuming more memory.
+ # Read some documents about tuning hashtables for further reference.
#
- HashSize 16384
+ HashSize 32768
#
- # Maximum number of conntracks:
- # it must be >= $ cat /proc/sys/net/ipv4/netfilter/ip_conntrack_max
+ # Maximum number of conntracks, it should be double of:
+ # $ cat /proc/sys/net/netfilter/nf_conntrack_max
+ # since the daemon may keep some dead entries cached for possible
+ # retransmission during state synchronization.
#
- HashLimit 65536
+ HashLimit 131072
#
# Logfile: on (/var/log/conntrackd.log), off, or a filename