Also since K2.4.21 the hashsize performs best with a value that is a power of 2 ex. A hashsize equaly large to the conntrack_max, has the best performance as I understand. In the older kernel this was not possible since one would have to set this value before booting (and there was no nvram setting for that?).Īlthough in K2.6 one can change booth of these in realtime dynamically without restarting any process. On routers with large amount of RAM (64 MB+ for example) one could increase this by 10 times from the default max of 4096 without any problem.įrom what I understand you also have to increase the hash table where these are stored in order to benefit from this increase. Most people here seems to decrease the default timeout (3600s) for these connections (which results in other problems) instead of increasing the maximum value. Ip_conntrack_max sets the maximum number of connections that can be kept at one time. K2.6 is very different regarding ip_conntrack_max (IP Filter Maximum Ports in the GUI) and it's hash table compared to the older kernel. >Here is a solution for increasing the maximum number of connections in Kernel 2.6: Please note that this is more or less experimental and may compromise your router's stability. Increasing Max Connection count beyond limits of GUI If you want to look at more technical information, and the technical results, more information is presented below. To close it later, use the command 'killall httpd'.Īt this point, you are finished. When starting the Web Interface on an as-needed basis, use the command 'httpd'.This way, it is possible to connect to the DD-WRT Device and turn the Web Interface back on when needed. If you want about 15% more RAM available, which can help the router reach the theoretical maximum of 4096 ports: If you start getting frequent disconnections in particular programs but not others (commonly Instant Messenger programs) then raise your TCP timeout to at least 600 or more. If you set them too low then the router will forget connections too quickly and active connections will be dropped. The above settings control how long it takes before inactive TCP & UDP connections are forgotten by the router. TCP Timeout (s): between 300 to 900 (higher is safer, lower can forget connections too quickly, DO NOT EVER GO BELOW 300 (5 minutes)!!).Maximum Ports: 4096 (For an 8MB RAM model set it no higher than 1024).Enter the following values at 'IP Filter Settings'.Go to the Web Interface of the DD-WRT Device and log in.Kernel: ip_conntrack: table full, dropping packet.Īfter you have rebooted and turned off any heavy P2P applications: Eventually, it will get verbose and you'll see logs similar to the following :.First, you'll see 'full, dropping packet.' messages followed by 'messages suppressed.'.From the CLI:Ĭat /proc/sys/net/ipv4/netfilter/ip_conntrack_maxĤ096 # Here the router displays the maximum number of possible connections. Check to see if your problem is caused by TCP or UDP connections.If that's not possible, reboot the DD-WRT Device.Try to use the CLI to communicate with your router.Close all your P2P/network applications and wait a few minutes for connections to be freed.When this 'slowdown' occurs and the router doesn't respond to pings nor Web Interface requests, you still can check what's going on: Web Interface The default management method, open a browser to or your custom DD-WRT Device's LAN IP. Although configuration in other methods besides 'router' is possible, such a 'bridge', this article and phenomena only occurs in the default router configuration of DD-WRT. Within the context of this article does not mean Skype, or other 'lite' P2P applications.ĭD-WRT Device A Router running third-party, DD-WRT firmware. Definitions P2P Peer to Peer applications. Routers affected with this issue are the most common types of routers running DD-WRT.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |