https://lysenko.dev/tags/kernel/Recent content in Kernel on Kostiantyn LysenkoHugo -- gohugo.ioen© 2026 Kostiantyn LysenkoSun, 16 Jun 2013 13:55:00 +0700https://lysenko.dev/posts/2013-06-resolving-nf-conntrack-table-full/Sun, 16 Jun 2013 13:55:00 +0700https://lysenko.dev/posts/2013-06-resolving-nf-conntrack-table-full/<p>If you see this in <code>dmesg</code> on a busy Linux server:</p> <div class="highlight-wrapper"><div class="highlight"><pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">nf_conntrack: table full, dropping packet</span></span></code></pre></div></div> <p>it means the kernel&rsquo;s connection-tracking table (used by Netfilter / iptables) has hit its size limit and is dropping new connections. Until you fix it, packets get silently dropped.</p>