Hello,
I have an issue where
net.netfilter.nf_conntrack_tcp_timeout_syn_recv is being updated by itself in proxmox to 60. It happens every perhaps 20s.
I had similar issue with nf_conntrack_max before but found out that this value needed to be set in the firewall setting. But I can't find any such setting for net.netfilter.nf_conntrack_tcp_timeout_syn_recv in the UI
According to docs: https://pve.proxmox.com/pve-docs-7/chapter-pve-firewall.html
nf_conntrack_tcp_timeout_syn_recv:
Is a valid setting. However if I do set something like:
nf_conntrack_tcp_timeout_syn_recv: 30
It actually never updates to 30. Instead now it stops to auto refresh - guess that solved that issue but seems very broken
Can you advice?
I have an issue where
net.netfilter.nf_conntrack_tcp_timeout_syn_recv is being updated by itself in proxmox to 60. It happens every perhaps 20s.
Code:
root@localhost:/etc/sysctl.d# sysctl net.netfilter.nf_conntrack_tcp_timeout_syn_recv
net.netfilter.nf_conntrack_tcp_timeout_syn_recv = 6
root@localhost:/etc/sysctl.d# sysctl net.netfilter.nf_conntrack_tcp_timeout_syn_recv
net.netfilter.nf_conntrack_tcp_timeout_syn_recv = 60I had similar issue with nf_conntrack_max before but found out that this value needed to be set in the firewall setting. But I can't find any such setting for net.netfilter.nf_conntrack_tcp_timeout_syn_recv in the UI
According to docs: https://pve.proxmox.com/pve-docs-7/chapter-pve-firewall.html
nf_conntrack_tcp_timeout_syn_recv:
Is a valid setting. However if I do set something like:
nf_conntrack_tcp_timeout_syn_recv: 30
It actually never updates to 30. Instead now it stops to auto refresh - guess that solved that issue but seems very broken
Can you advice?
Last edited: