nf_conntrack: table full, dropping packet解决办法

现象

测试环境中某台机器连接数过多(ESTABLISHED连接数超过60K),发现无法再登陆该机器。
通过dmesg -T查看系统错误信息,如下:

[Thu Oct 15 14:03:21 2015] nf_conntrack: table full, dropping packet.
[Thu Oct 15 14:03:21 2015] nf_conntrack: table full, dropping packet.
[Thu Oct 15 14:03:21 2015] nf_conntrack: table full, dropping packet.
[Thu Oct 15 14:03:21 2015] nf_conntrack: table full, dropping packet.
[Thu Oct 15 14:03:21 2015] nf_conntrack: table full, dropping packet.
[Thu Oct 15 14:03:21 2015] nf_conntrack: table full, dropping packet.
[Thu Oct 15 14:03:21 2015] nf_conntrack: table full, dropping packet.
[Thu Oct 15 14:03:21 2015] nf_conntrack: table full, dropping packet.
[Thu Oct 15 14:03:21 2015] nf_conntrack: table full, dropping packet.
[Thu Oct 15 14:03:21 2015] nf_conntrack: table full, dropping packet.

Continue reading nf_conntrack: table full, dropping packet解决办法