| To: | Olaf Hering <olh@xxxxxxx> |
|---|---|
| Subject: | Re: limited number if iptable rules on 64bit hosts |
| From: | "Bill Rugolsky Jr." <brugolsky@xxxxxxxxxxxxxxxxxxxxxxxxx> |
| Date: | Wed, 2 Feb 2005 17:38:53 -0500 |
| Cc: | netdev@xxxxxxxxxxx |
| In-reply-to: | <20050202222516.GA15440@xxxxxxx> |
| References: | <20050202133851.GA9680@xxxxxxx> <20050202222516.GA15440@xxxxxxx> |
| Sender: | netdev-bounce@xxxxxxxxxxx |
| User-agent: | Mutt/1.4.1i |
On Wed, Feb 02, 2005 at 11:25:16PM +0100, Olaf Hering wrote:
> it triggers the first -ENOMEM in
> net/ipv4/netfilter/ip_tables.c:do_replace
>
> sizeof(struct ipt_table_info)+SMP_ALIGN(tmp.size)*NR_CPUS == 67108992 bytes
>
> 128+524288*128==67108992
>
> (sizeof(struct ipt_table_info) + (((tmp.size) + (1 << 7)-1) & ~((1 << 7)-1))
> * 128)
>
> hmm, no braces missing.
I don't have time to look now [I'm running for the door],
but that's possibly the vmalloc() limit of 64M (67108864) ?
Regards,
Bill Rugolsky
|
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | Re: [PATCH 2.4] PKT_SCHED: Fix ingress qdisc to pick up IPv6 packets, David S. Miller |
|---|---|
| Next by Date: | Re: limited number if iptable rules on 64bit hosts, Olaf Hering |
| Previous by Thread: | Re: limited number if iptable rules on 64bit hosts, Olaf Hering |
| Next by Thread: | Re: limited number if iptable rules on 64bit hosts, Olaf Hering |
| Indexes: | [Date] [Thread] [Top] [All Lists] |