From: Pablo Neira Ayuso <pablo@netfilter.org>
To: Arturo Borrero Gonzalez <arturo@netfilter.org>
Cc: Oz Shlomo <ozsh@nvidia.com>, Paul Blakey <paulb@nvidia.com>,
netfilter-devel@vger.kernel.org,
Saeed Mahameed <saeedm@nvidia.com>,
Marcelo Ricardo Leitner <mleitner@redhat.com>
Subject: Re: [PATCH nf-next] docs: networking: Update connection tracking offload sysctl parameters
Date: Mon, 21 Jun 2021 18:26:05 +0200 [thread overview]
Message-ID: <20210621162605.GA3397@salvia> (raw)
In-Reply-To: <04c84d18-5707-6423-5736-a70114df0f15@netfilter.org>
On Mon, Jun 21, 2021 at 06:14:15PM +0200, Arturo Borrero Gonzalez wrote:
> On 6/17/21 8:50 AM, Oz Shlomo wrote:
> > Document the following connection offload configuration parameters:
> > - nf_flowtable_tcp_timeout
> > - nf_flowtable_tcp_pickup
> > - nf_flowtable_udp_timeout
> > - nf_flowtable_udp_pickup
> >
> > Signed-off-by: Oz Shlomo<ozsh@nvidia.com>
>
> Sorry for the late feedback.
>
> In my experience the kernel docs have rather poor documents for netfilter
> sysctl parameters. I often find myself reading the source code for a deeper
> understanding of what is going on.
>
> The docs included in this patch are too short in my opinion, example:
>
> +nf_flowtable_tcp_pickup - INTEGER (seconds)
> + default 120
> +
> + TCP connection timeout after being aged from nf flow table offload.
>
>
> Here, having an example of the sequence of events going on with the
> conntrack entry and how this sysctl key affects it would be great. Some
> explanation of the behavior that may be observed when tuning this value
> would be nice as well.
>
> Given the patch was merged already, you can feel free to ignore this anyway :-)
I think I can extend the flowtable documentation to include this
information:
https://www.kernel.org/doc/html/latest/networking/nf_flowtable.html
to refer to this new sysctl knobs too.
If you think something else in the big picture, please, let me know
I'll be glad to extend it.
Thanks!
next prev parent reply other threads:[~2021-06-21 16:27 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-06-17 6:50 [PATCH nf-next] docs: networking: Update connection tracking offload sysctl parameters Oz Shlomo
2021-06-18 22:00 ` Pablo Neira Ayuso
2021-06-21 16:14 ` Arturo Borrero Gonzalez
2021-06-21 16:26 ` Pablo Neira Ayuso [this message]
2021-06-21 17:03 ` Arturo Borrero Gonzalez
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20210621162605.GA3397@salvia \
--to=pablo@netfilter.org \
--cc=arturo@netfilter.org \
--cc=mleitner@redhat.com \
--cc=netfilter-devel@vger.kernel.org \
--cc=ozsh@nvidia.com \
--cc=paulb@nvidia.com \
--cc=saeedm@nvidia.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).