nf_conntrack: table full, dropping packet.

[arun_nishad]

Hi,

I have a FC14 - 64 client/server machine & i am trying to create >80,000 connections but as it reaches to 60000 approx. connection failure starts.

I looked into /var/log/messags & see following logs:

Jul 6 10:50:34 cavisson-server kernel: [ 2387.457740] net_ratelimit: 141 callbacks suppressed
Jul 6 10:50:34 cavisson-server kernel: [ 2387.457746] nf_conntrack: table full, dropping packet.
Jul 6 10:50:34 cavisson-server kernel: [ 2387.510411] nf_conntrack: table full, dropping packet.
Jul 6 10:50:34 cavisson-server kernel: [ 2387.510638] nf_conntrack: table full, dropping packet.
Jul 6 10:50:34 cavisson-server kernel: [ 2387.623513] nf_conntrack: table full, dropping packet.
Jul 6 10:50:34 cavisson-server kernel: [ 2387.624711] nf_conntrack: table full, dropping packet.
Jul 6 10:50:34 cavisson-server kernel: [ 2387.656227] nf_conntrack: table full, dropping packet.
Jul 6 10:50:34 cavisson-server kernel: [ 2387.656334] nf_conntrack: table full, dropping packet.
Jul 6 10:50:34 cavisson-server kernel: [ 2387.687248] nf_conntrack: table full, dropping packet.
Jul 6 10:50:34 cavisson-server kernel: [ 2387.784578] nf_conntrack: table full, dropping packet.
Jul 6 10:50:34 cavisson-server kernel: [ 2387.801029] nf_conntrack: table full, dropping packet.


Can someone exaplain what kind of these logs are ?
What is this netfilter ?

If we increase limit of net.netfilter.nf_conntrack_count then any performance issue ? (Current value is 65530)

Can we disable it without causing any performance issue ?
If yes How ?


Please help.