From: andre.correa@pobox.com
To: netfilter@lists.netfilter.org
Cc: andre.correa@pobox.com
Subject: Too many ARP entries and Re: sendto: No buffer space available
Date: Mon, 2 Dec 2002 18:28:36 -0200 [thread overview]
Message-ID: <14127620470.20021202182836@pobox.com> (raw)
In-Reply-To: <571705138.20021202111645@pobox.com>
Hi, I am writting to answer myself and send a new question to the list.
I've had problems in my NAT/PPPoE box, with traffic stopping suddenly
and then coming back in a few seconds and I've found that my neighbour
table was getting full. When it is full, no new ARP entries can be
created and no new traffic can happen. Now I encreased this values:
echo 512 > /proc/sys/net/ipv4/neigh/default/gc_thresh1
echo 2048 > /proc/sys/net/ipv4/neigh/default/gc_thresh2
echo 4096 > /proc/sys/net/ipv4/neigh/default/gc_thresh3
But there is still a question for me. Looking at my arp table, I
see that there are =~ 150 entries, seconds passing and more entries
coming, 20 seconds after I can have =~1100, it goes on until it reachs
=~2200 entries, then it goes back to the =~100 and starts over again.
I have less then 50 NAT users. Is it normal to have some many ARP
entries with this variation? Looking the ARP table I see my "Internet"
interface with lots of entries, with internet host IP addresses and my
gateway's NIC MAC address.
Isn't ARP supposed to keep entries just to local network systems?
Is it all normal? And if so, how big can gc_threash[1,2,3] be?
tks in advance.
Andre
andre.correa@pobox.com
On 02/12/02, andre.correa@pobox.com wrote:
acpc> Hi list,
acpc> I have a Linux 2.4.19 box doing NAT, PPPoE, Traffic Shapping and
acpc> Firewalling. It is a 2xPIII 733MHz with 512Mb RAM. Everything was
acpc> working just fine until 5 or 6 days ago we started having some strange
acpc> behavior.
acpc> Under moderate traffic, 15 to 20 NAT users, we find that traffic
acpc> suddenly stops for 10 or 15 seconds and then comes back. During this
acpc> periods I've figured out that if I ping my interfaces or Internet
acpc> addresses I get:
acpc> sendto: No buffer space available
acpc> ping: sent 64 octets to xxx.xxx.xxx.xxx, ret=-1
acpc> I've made lots of searchs in mailling lists, Internet and in the
acpc> kernel source but couldn't work on it.
acpc> Can you guys help me to solve this problem?
acpc> tks in advance for your help and attention.
acpc> Andre
acpc> andre.correa@pobox.com
Andre Correa
andre.docena@pobox.com
next prev parent reply other threads:[~2002-12-02 20:28 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2002-12-02 13:16 sendto: No buffer space available andre.correa
2002-12-02 14:33 ` Bob Keyes
2002-12-02 14:46 ` Re[2]: " andre.correa
2002-12-02 20:28 ` andre.correa [this message]
2002-12-03 13:08 ` Too many ARP entries and " Cedric Blancher
2002-12-03 13:27 ` Nick Drage
2002-12-03 14:27 ` Re[2]: " andre.correa
2002-12-03 17:54 ` Nick Drage
2002-12-04 3:09 ` Paul Frieden
2002-12-04 15:23 ` Ard van Breemen
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=14127620470.20021202182836@pobox.com \
--to=andre.correa@pobox.com \
--cc=andre.docena@pobox.com \
--cc=netfilter@lists.netfilter.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.