"ping: sendmsg: Operation not permitted" on MDK10

[Guest schweini]

i have an old pentium running as a router here in our LAN, and a couple of minutes after starting up a BitTorrent client (Azureus) on a amachone connected to that router, my internet connectivity start to break down drastically. So i logged on to the router as root, and when i started pinging some random host, i always get:

 

ping: sendmsg: Operation not permitted

 

messages. once in a while a packet seems to get through, but ost of the time nothing.

 

when i kill Azureus, after ca. a minute everything's working fine again.

 

my guess is that i'm running into some connection-limit on the router-box, but i have no idea which, and how to change it.

 

the router is a Pentium 1, 200MHz, 64MB RAM, which should be more than enough for routing our 1MBit connection.

 

I set up routing manually (not via the connection sharing wizard)

 

anyone with any ideas what is wrong?

[Guest schweini]

darn. should've checked my logs first! :-)

 

for future reference, in case someone runs into the same issue:

 

my syslog showed a lot of

ip_conntrack: table full, dropping packet

messages.

 

the problem is that netfilter ran into it's limit of connections in can track. this number is specified in

/proc/sys/net/ipv4/ip_conntrack_max

mine was set at some rather low value. i simply did a

echo "8192" > /proc/sys/net/ipv4/ip_conntrack_max

and everything is fine and dandy.

the embarassing thing is that it's a netfilter FAQ. more info at:

http://www.netfilter.org/documentation/FAQ...aq-3.html#ss3.7

[spinynorman]

Thanks for posting the solution - and welcome to the board. :)