Add nf_conntrack usage analysis

In container platform, generally using iptables to do nat between `service` and `containers`. So container's host always suffering `nf_conntrack` full issue.  eg :

```
[Mon Apr 23 10:58:07 2018] net_ratelimit: 5988 callbacks suppressed
[Mon Apr 23 10:58:07 2018] nf_conntrack: table full, dropping packet
[Mon Apr 23 10:58:07 2018] nf_conntrack: table full, dropping packet
[Mon Apr 23 10:58:07 2018] nf_conntrack: table full, dropping packet
[Mon Apr 23 10:58:07 2018] nf_conntrack: table full, dropping packet
[Mon Apr 23 10:58:07 2018] nf_conntrack: table full, dropping packet
[Mon Apr 23 10:58:07 2018] nf_conntrack: table full, dropping packet
[Mon Apr 23 10:58:07 2018] nf_conntrack: table full, dropping packet
[Mon Apr 23 10:58:07 2018] nf_conntrack: table full, dropping packet
[Mon Apr 23 10:58:07 2018] nf_conntrack: table full, dropping packet
[Mon Apr 23 10:58:07 2018] nf_conntrack: table full, dropping packet
[Mon Apr 23 10:58:12 2018] net_ratelimit: 6464 callbacks suppressed
```

Containers IP or state  which use up the conntrack bucket can be found at `/proc/net/nf_conntrack`.  Or using [`conntrack-tools`](http://conntrack-tools.netfilter.org) do some basic analysis.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Add nf_conntrack usage analysis #8

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Add nf_conntrack usage analysis #8

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions