error: "net.ipv4.ip_conntrack_max" is an unknown key

最新推荐文章于 2021-05-06 20:25:03 发布
转载 最新推荐文章于 2021-05-06 20:25:03 发布 · 453 阅读 · 1

本文记录了解决Linux系统中iptables服务与ip_conntrack模块冲突的问题过程,包括关闭iptables服务、加载和卸载ip_conntrack模块等步骤,并探讨了两者之间的关系。


在iptables服务开启的状态测试不会出现unknown key的错误,我们尝试关闭
iptables .

[root@DT2MISPDB ~]# service iptables stop 
Flushing firewall rules: [  OK  ]
Setting chains to policy ACCEPT: nat filter [  OK  ]
Unloading iptables modules: [  OK  ]
[root@DT2MISPDB ~]# 
[root@DT2MISPDB etc]# service iptables status
Firewall is stopped.

 

[root@DT2MISPDB etc]# sysctl -p
net.ipv4.ip_forward = 0
net.ipv4.conf.default.rp_filter = 1
net.ipv4.conf.default.accept_source_route = 0
kernel.sysrq = 0
kernel.core_uses_pid = 1
net.ipv4.tcp_syncookies = 1
kernel.msgmnb = 65536
kernel.msgmax = 65536
kernel.shmall = 2097152
kernel.shmmax = 3221225472
kernel.shmmni = 4096
kernel.sem = 250 32000 100 128
fs.file-max = 6815744
net.ipv4.ip_local_port_range = 9000 65500
net.core.rmem_default = 262144
net.core.rmem_max = 4194304
net.core.wmem_default = 262144
net.core.wmem_max = 1048576
fs.aio-max-nr = 1048576
error: "net.ipv4.ip_conntrack_max" is an unknown key
[root@DT2MISPDB etc]#

发现错误出现:
error: "net.ipv4.ip_conntrack_max" is an unknown key

 

 

使用modprobe载入ip_conntrack模块,lsmod查看模块已载入。

[root@DT2MISPDB etc]# modprobe  ip_conntrack 
[root@DT2MISPDB etc]# lsmod
Module                  Size  Used by
ip_conntrack           53281  0

 

再次关闭iptables服务,查看
[root@DT2MISPDB etc]# service iptables stop
Flushing firewall rules: [  OK  ]
Setting chains to policy ACCEPT: filter [  OK  ]
Unloading iptables modules: [  OK  ]
[root@DT2MISPDB etc]#

[root@DT2MISPDB etc]# lsmod  
结果没有发现ip_conntrack 模组。

 


问题 :
1.  Linux下加载及卸载模块是什么意思  ? 这里的模块都是指核心模块 ?  
2.  加载 ip_conntrack 模块和 iptables 服务以及 通过service iptables start  有什么关系  ?

 

来自 “ ITPUB博客 ” ,链接:http://blog.itpub.net/35489/viewspace-687339/,如需转载,请注明出处,否则将追究法律责任。

转载于:http://blog.itpub.net/35489/viewspace-687339/

cuixie2370
关注
LINUX内核参数调优
m0_74282605的博客
03-16 590
为了应付这种攻击,现代Unix系统中普遍采用多连接队列处理的方式来缓冲(而不是解决)这种攻击,是用一个基本队列处理正常的完全连接应用(Connect()和Accept() ),是用另一个队列单独存放半打开连接。为了实现更好的性能应该启用这个选项。系统支持的最大ipv4连接数,默认65536(事实上这也是理论最大值),同时这个值和你的内存大小有关,如果内存128M,这个值最大8192,1G以上内存这个值都是默认65536,这个值受/proc/sys/net/ipv4/ip_conntrack_max限制。
linux-内核参数优化参考指标
dlm520947的博客
07-30 2741
民间最全的Linux系统内核参数调优说   相信做运维的同仁,进行运维环境初建时,必须要考虑到操作系统内核参数的优化问题,本人经历数次的运维环境重建后,决定要自行收集一份比较完善的系统内核参数优化说明文件出来,于是就有了下文,本文当前值是官方默认参数,建议参数直接添加于sysctl -a输出的结果每一行的后面,希望对运维的同仁做系统内核参数调优时有所帮助。废话不多讲,直接上干货! ...
linux sysctl -p 报error: "net.bridge.bridge-nf-call-ip6tables" is an unknown key
无锋剑
11-29 465
修改 linux 内核文件 sysctl  -P 报错 error: "net.bridge.bridge-nf-call-ip6tables" is an unknown key error: "net.bridge.bridge-nf-call-iptables" is an unknown key error: "net.bridge.bridge-nf-call-arptables"...
ubuntu / centos6 error: "net.ipv4.ip_conntrack_max" is an unknown key
weixin_33967071的博客
06-12 383
为什么80%的码农都做不了架构师?>>> ...
[root@node4 ~]# kubeadm reset --force [preflight] Running pre-flight checks W0923 10:54:42.908233 30672 removeetcdmember.go:79] [reset] No kubeadm config, using etcd pod spec to get data directory [reset] No etcd config found. Assuming external etcd [reset] Please, manually reset etcd to prevent further issues [reset] Stopping the kubelet service [reset] Unmounting mounted directories in "/var/lib/kubelet" [reset] Deleting contents of config directories: [/etc/kubernetes/manifests /etc/kubernetes/pki] [reset] Deleting files: [/etc/kubernetes/admin.conf /etc/kubernetes/kubelet.conf /etc/kubernetes/bootstrap-kubelet.conf /etc/kubernetes/controller-manager.conf /etc/kubernetes/scheduler.conf] [reset] Deleting contents of stateful directories: [/var/lib/kubelet /var/lib/dockershim /var/run/kubernetes /var/lib/cni] The reset process does not clean CNI configuration. To do so, you must remove /etc/cni/net.d The reset process does not reset or clean up iptables rules or IPVS tables. If you wish to reset iptables, you must do so manually by using the "iptables" command. If your cluster was setup to utilize IPVS, run ipvsadm --clear (or similar) to reset your system's IPVS tables. The reset process does not clean your kubeconfig files and you must remove them manually. Please, check the contents of the $HOME/.kube/config file. [root@node4 ~]# rm -rf /etc/kubernetes /var/lib/kubelet [root@node4 ~]# systemctl stop kubelet [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# systemctl status docker ● docker.service - Docker Application Container Engine Loaded: loaded (/etc/systemd/system/docker.service; enabled; vendor preset: disabled) Drop-In: /etc/systemd/system/docker.service.d └─docker-dns.conf, docker-options.conf Active: active (running) since 二 2025-09-23 10:36:29 CST; 18min ago Docs: http://docs.docker.com Main PID: 16450 (dockerd) Tasks: 22 Memory: 54.9M CGroup: /system.slice/docker.service └─16450 /usr/bin/dockerd --iptables=false --exec-opt native.cgroupdriver=systemd --data-root=/var/lib/docker --log-opt max-size=50m --log-opt max-file=5 --dns 10.233.0.3 --dns 202.101.224.68 --dns 202.101.224.69 --dns-search default.svc.cluster.local --dns... 9月 23 10:36:28 node4 dockerd[16450]: time="2025-09-23T10:36:28.714625957+08:00" level=info msg="ClientConn switching balancer to \"pick_first\"" module=grpc 9月 23 10:36:28 node4 dockerd[16450]: time="2025-09-23T10:36:28.755430797+08:00" level=info msg="[graphdriver] using prior storage driver: overlay2" 9月 23 10:36:28 node4 dockerd[16450]: time="2025-09-23T10:36:28.954323711+08:00" level=info msg="Loading containers: start." 9月 23 10:36:29 node4 dockerd[16450]: time="2025-09-23T10:36:29.206033565+08:00" level=info msg="Fixing inconsistent endpoint_cnt for network none. Expected=0, Actual=12" 9月 23 10:36:29 node4 dockerd[16450]: time="2025-09-23T10:36:29.337817459+08:00" level=info msg="Default bridge (docker0) is assigned with an IP address 172.17.0.0/16. Daemon option --bip can be used to set a preferred IP address" 9月 23 10:36:29 node4 dockerd[16450]: time="2025-09-23T10:36:29.495200799+08:00" level=info msg="Loading containers: done." 9月 23 10:36:29 node4 dockerd[16450]: time="2025-09-23T10:36:29.800389989+08:00" level=info msg="Docker daemon" commit=a89b842 graphdriver(s)=overlay2 version=20.10.17 9月 23 10:36:29 node4 dockerd[16450]: time="2025-09-23T10:36:29.800482890+08:00" level=info msg="Daemon has completed initialization" 9月 23 10:36:29 node4 systemd[1]: Started Docker Application Container Engine. 9月 23 10:36:29 node4 dockerd[16450]: time="2025-09-23T10:36:29.952645573+08:00" level=info msg="API listen on /var/run/docker.sock" [root@node4 ~]# systemctl restart docker containerd [root@node4 ~]# systemctl status docker ● docker.service - Docker Application Container Engine Loaded: loaded (/etc/systemd/system/docker.service; enabled; vendor preset: disabled) Drop-In: /etc/systemd/system/docker.service.d └─docker-dns.conf, docker-options.conf Active: active (running) since 二 2025-09-23 10:55:37 CST; 5s ago Docs: http://docs.docker.com Main PID: 30797 (dockerd) Tasks: 21 Memory: 48.8M CGroup: /system.slice/docker.service └─30797 /usr/bin/dockerd --iptables=false --exec-opt native.cgroupdriver=systemd --data-root=/var/lib/docker --log-opt max-size=50m --log-opt max-file=5 --dns 10.233.0.3 --dns 202.101.224.68 --dns 202.101.224.69 --dns-search default.svc.cluster.local --dns... 9月 23 10:55:36 node4 dockerd[30797]: time="2025-09-23T10:55:36.636353414+08:00" level=info msg="ccResolverWrapper: sending update to cc: {[{unix:///run/containerd/containerd.sock <nil> 0 <nil>}] <nil> <nil>}" module=grpc 9月 23 10:55:36 node4 dockerd[30797]: time="2025-09-23T10:55:36.636357438+08:00" level=info msg="ClientConn switching balancer to \"pick_first\"" module=grpc 9月 23 10:55:36 node4 dockerd[30797]: time="2025-09-23T10:55:36.687672605+08:00" level=info msg="[graphdriver] using prior storage driver: overlay2" 9月 23 10:55:36 node4 dockerd[30797]: time="2025-09-23T10:55:36.892456214+08:00" level=info msg="Loading containers: start." 9月 23 10:55:36 node4 dockerd[30797]: time="2025-09-23T10:55:36.998523887+08:00" level=info msg="Default bridge (docker0) is assigned with an IP address 172.17.0.0/16. Daemon option --bip can be used to set a preferred IP address" 9月 23 10:55:37 node4 dockerd[30797]: time="2025-09-23T10:55:37.065087090+08:00" level=info msg="Loading containers: done." 9月 23 10:55:37 node4 dockerd[30797]: time="2025-09-23T10:55:37.107876319+08:00" level=info msg="Docker daemon" commit=a89b842 graphdriver(s)=overlay2 version=20.10.17 9月 23 10:55:37 node4 dockerd[30797]: time="2025-09-23T10:55:37.107948567+08:00" level=info msg="Daemon has completed initialization" 9月 23 10:55:37 node4 systemd[1]: Started Docker Application Container Engine. 9月 23 10:55:37 node4 dockerd[30797]: time="2025-09-23T10:55:37.253910996+08:00" level=info msg="API listen on /var/run/docker.sock" [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# ss -tulnp | grep 10248 [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# [root@node4 ~]# kubeadm join 192.168.1.12:6443 \ > --token n0higb.w0qcokvgv3521iqh \ > --discovery-token-ca-cert-hash sha256:f2a8a9e2b9ec276e0a3ead1fa393ad40a2657105d48b12ff21fc305cc680f87d \ > --v=5 I0923 10:56:30.172295 30964 join.go:395] [preflight] found NodeName empty; using OS hostname as NodeName I0923 10:56:30.172656 30964 initconfiguration.go:115] detected and using CRI socket: /var/run/dockershim.sock [preflight] Running pre-flight checks I0923 10:56:30.172719 30964 preflight.go:90] [preflight] Running general checks I0923 10:56:30.172974 30964 checks.go:250] validating the existence and emptiness of directory /etc/kubernetes/manifests I0923 10:56:30.172986 30964 checks.go:287] validating the existence of file /etc/kubernetes/kubelet.conf I0923 10:56:30.172993 30964 checks.go:287] validating the existence of file /etc/kubernetes/bootstrap-kubelet.conf I0923 10:56:30.173001 30964 checks.go:103] validating the container runtime I0923 10:56:30.239105 30964 checks.go:129] validating if the "docker" service is enabled and active I0923 10:56:30.292863 30964 checks.go:336] validating the contents of file /proc/sys/net/bridge/bridge-nf-call-iptables I0923 10:56:30.292993 30964 checks.go:336] validating the contents of file /proc/sys/net/ipv4/ip_forward I0923 10:56:30.293010 30964 checks.go:654] validating whether swap is enabled or not I0923 10:56:30.293175 30964 checks.go:377] validating the presence of executable conntrack I0923 10:56:30.293327 30964 checks.go:377] validating the presence of executable ip I0923 10:56:30.293414 30964 checks.go:377] validating the presence of executable iptables I0923 10:56:30.293575 30964 checks.go:377] validating the presence of executable mount I0923 10:56:30.293650 30964 checks.go:377] validating the presence of executable nsenter I0923 10:56:30.293660 30964 checks.go:377] validating the presence of executable ebtables I0923 10:56:30.293668 30964 checks.go:377] validating the presence of executable ethtool I0923 10:56:30.293676 30964 checks.go:377] validating the presence of executable socat I0923 10:56:30.293684 30964 checks.go:377] validating the presence of executable tc I0923 10:56:30.293692 30964 checks.go:377] validating the presence of executable touch I0923 10:56:30.293702 30964 checks.go:525] running all checks I0923 10:56:30.345060 30964 checks.go:408] checking whether the given node name is valid and reachable using net.LookupHost I0923 10:56:30.345344 30964 checks.go:623] validating kubelet version I0923 10:56:30.374493 30964 checks.go:129] validating if the "kubelet" service is enabled and active I0923 10:56:30.380422 30964 checks.go:202] validating availability of port 10250 I0923 10:56:30.380703 30964 checks.go:287] validating the existence of file /etc/kubernetes/pki/ca.crt I0923 10:56:30.380715 30964 checks.go:437] validating if the connectivity type is via proxy or direct I0923 10:56:30.380739 30964 join.go:465] [preflight] Discovering cluster-info I0923 10:56:30.380760 30964 token.go:78] [discovery] Created cluster-info discovery client, requesting info from "192.168.1.12:6443" I0923 10:56:30.406267 30964 token.go:116] [discovery] Requesting info from "192.168.1.12:6443" again to validate TLS against the pinned public key I0923 10:56:30.425034 30964 token.go:133] [discovery] Cluster info signature and contents are valid and TLS certificate validates against pinned roots, will use API Server "192.168.1.12:6443" I0923 10:56:30.425084 30964 discovery.go:51] [discovery] Using provided TLSBootstrapToken as authentication credentials for the join process I0923 10:56:30.425102 30964 join.go:479] [preflight] Fetching init configuration I0923 10:56:30.425118 30964 join.go:517] [preflight] Retrieving KubeConfig objects [preflight] Reading configuration from the cluster... [preflight] FYI: You can look at this config file with 'kubectl -n kube-system get cm kubeadm-config -o yaml' I0923 10:56:30.468845 30964 interface.go:431] Looking for default routes with IPv4 addresses I0923 10:56:30.468870 30964 interface.go:436] Default route transits interface "p1p1" I0923 10:56:30.470524 30964 interface.go:208] Interface p1p1 is up I0923 10:56:30.470947 30964 interface.go:256] Interface "p1p1" has 2 addresses :[192.168.1.16/22 fe80::4e10:d5ff:fe52:a682/64]. I0923 10:56:30.470993 30964 interface.go:223] Checking addr 192.168.1.16/22. I0923 10:56:30.471022 30964 interface.go:230] IP found 192.168.1.16 I0923 10:56:30.471063 30964 interface.go:262] Found valid IPv4 address 192.168.1.16 for interface "p1p1". I0923 10:56:30.471126 30964 interface.go:442] Found active IP 192.168.1.16 W0923 10:56:30.471181 30964 utils.go:69] The recommended value for "clusterDNS" in "KubeletConfiguration" is: [10.233.0.10]; the provided value is: [169.254.25.10] I0923 10:56:30.475012 30964 preflight.go:101] [preflight] Running configuration dependant checks I0923 10:56:30.475059 30964 controlplaneprepare.go:211] [download-certs] Skipping certs download I0923 10:56:30.475084 30964 kubelet.go:110] [kubelet-start] writing bootstrap kubelet config file at /etc/kubernetes/bootstrap-kubelet.conf I0923 10:56:30.476555 30964 kubelet.go:118] [kubelet-start] writing CA certificate at /etc/kubernetes/pki/ca.crt I0923 10:56:30.477445 30964 kubelet.go:139] [kubelet-start] Checking for an existing Node in the cluster with name "node4" and status "Ready" I0923 10:56:30.488211 30964 kubelet.go:153] [kubelet-start] Stopping the kubelet [kubelet-start] Writing kubelet configuration to file "/var/lib/kubelet/config.yaml" [kubelet-start] Writing kubelet environment file with flags to file "/var/lib/kubelet/kubeadm-flags.env" [kubelet-start] Starting the kubelet [kubelet-start] Waiting for the kubelet to perform the TLS Bootstrap... [kubelet-check] Initial timeout of 40s passed. [kubelet-check] It seems like the kubelet isn't running or healthy. [kubelet-check] The HTTP call equal to 'curl -sSL http://localhost:10248/healthz' failed with error: Get "http://localhost:10248/healthz": dial tcp 127.0.0.1:10248: connect: connection refused. [kubelet-check] It seems like the kubelet isn't running or healthy. [kubelet-check] The HTTP call equal to 'curl -sSL http://localhost:10248/healthz' failed with error: Get "http://localhost:10248/healthz": dial tcp 127.0.0.1:10248: connect: connection refused. [kubelet-check] It seems like the kubelet isn't running or healthy. [kubelet-check] The HTTP call equal to 'curl -sSL http://localhost:10248/healthz' failed with error: Get "http://localhost:10248/healthz": dial tcp 127.0.0.1:10248: connect: connection refused. [kubelet-check] It seems like the kubelet isn't running or healthy. [kubelet-check] The HTTP call equal to 'curl -sSL http://localhost:10248/healthz' failed with error: Get "http://localhost:10248/healthz": dial tcp 127.0.0.1:10248: connect: connection refused. ^C [root@node4 ~]# mkdir -p /etc/kubernetes/pki [root@node4 ~]# ls /etc/kubernetes/pki/ca.crt.bak ls: 无法访问/etc/kubernetes/pki/ca.crt.bak: 没有那个文件或目录 [root@node4 ~]#
最新发布
09-24
- 确保路由转发:`sysctl net.ipv4.ip_forward=1` --- ### 相关问题 1. 如何解读 `journalctl -u kubelet` 中的 "failed to load Kubelet config" 错误? 2. 当 kubelet 持续崩溃时,如何获取核心转储文件进行...
[2025-07-31 02:11:27] [INFO] 尝试 1/5: 直接下载镜像 quay.mirrors.ustc.edu.cn/coreos/flannel:v0.22.0 Error: Get "https://quay.mirrors.ustc.edu.cn/v2/": dial tcp: lookup quay.mirrors.ustc.edu.cn on 223.5.5.5:53: no such host [2025-07-31 02:11:30] [INFO] 尝试 2/5: 直接下载镜像 quay.mirrors.ustc.edu.cn/coreos/flannel:v0.22.0 Error: Get "https://quay.mirrors.ustc.edu.cn/v2/": dial tcp: lookup quay.mirrors.ustc.edu.cn on 223.5.5.5:53: no such host [2025-07-31 02:11:37] [INFO] 尝试 3/5: 直接下载镜像 quay.mirrors.ustc.edu.cn/coreos/flannel:v0.22.0 Error: Get "https://quay.mirrors.ustc.edu.cn/v2/": dial tcp: lookup quay.mirrors.ustc.edu.cn on 223.5.5.5:53: no such host [2025-07-31 02:11:46] [INFO] 尝试 4/5: 直接下载镜像 quay.mirrors.ustc.edu.cn/coreos/flannel:v0.22.0 Error: Get "https://quay.mirrors.ustc.edu.cn/v2/": dial tcp: lookup quay.mirrors.ustc.edu.cn on 223.5.5.5:53: no such host [2025-07-31 02:11:59] [INFO] 尝试 5/5: 直接下载镜像 quay.mirrors.ustc.edu.cn/coreos/flannel:v0.22.0 Error: Get "https://quay.mirrors.ustc.edu.cn/v2/": dial tcp: lookup quay.mirrors.ustc.edu.cn on 223.5.5.5:53: no such host [2025-07-31 02:12:14] [ERROR] 直接下载镜像 quay.mirrors.ustc.edu.cn/coreos/flannel:v0.22.0 失败 (重试 5 次) [2025-07-31 02:12:14] [ERROR] 镜像下载失败: quay.mirrors.ustc.edu.cn/coreos/flannel:v0.22.0 [2025-07-31 02:12:14] [WARN] 镜像下载失败: quay.mirrors.ustc.edu.cn/coreos/flannel:v0.22.0 [2025-07-31 02:12:14] [INFO] 使用 crane 直接下载镜像: docker.io/flannelcni/flannel:v0.22.0 [2025-07-31 02:12:14] [INFO] 尝试 1/5: 直接下载镜像 docker.io/flannelcni/flannel:v0.22.0 Error: Get "https://index.docker.io/v2/": dial tcp 128.121.146.228:443: connect: connection refused [2025-07-31 02:12:38] [INFO] 尝试 2/5: 直接下载镜像 docker.io/flannelcni/flannel:v0.22.0 Error: Get "https://index.docker.io/v2/": dial tcp 128.121.146.228:443: connect: connection refused [2025-07-31 02:13:06] [INFO] 尝试 3/5: 直接下载镜像 docker.io/flannelcni/flannel:v0.22.0 Error: Get "https://index.docker.io/v2/": dial tcp 31.13.87.19:443: connect: connection refused [2025-07-31 02:13:36] [INFO] 尝试 4/5: 直接下载镜像 docker.io/flannelcni/flannel:v0.22.0 Error: Get "https://index.docker.io/v2/": dial tcp 31.13.87.19:443: connect: connection refused [2025-07-31 02:14:09] [INFO] 尝试 5/5: 直接下载镜像 docker.io/flannelcni/flannel:v0.22.0 Error: Get "https://index.docker.io/v2/": dial tcp 69.63.178.13:443: connect: connection refused [2025-07-31 02:14:45] [ERROR] 直接下载镜像 docker.io/flannelcni/flannel:v0.22.0 失败 (重试 5 次) [2025-07-31 02:14:46] [ERROR] 镜像下载失败: docker.io/flannelcni/flannel:v0.22.0 [2025-07-31 02:14:46] [WARN] 镜像下载失败: docker.io/flannelcni/flannel:v0.22.0 [2025-07-31 02:14:46] [WARN] 以下镜像下载失败: [2025-07-31 02:14:46] [WARN] - quay.mirrors.ustc.edu.cn/coreos/flannel:v0.22.0 [2025-07-31 02:14:46] [WARN] - docker.io/flannelcni/flannel:v0.22.0 [2025-07-31 02:14:46] [WARN] 请手动下载或检查网络连接 [2025-07-31 02:14:46] [INFO] ===== 下载系统优化工具 ===== [2025-07-31 02:14:46] [INFO] 工具已存在,跳过下载: cheat-linux-amd64.gz [2025-07-31 02:14:46] [INFO] 工具已存在,跳过下载: btop-x86_64-linux-musl.tbz [2025-07-31 02:14:46] [INFO] 工具已存在,跳过下载: bottom_x86_64-unknown-linux-gnu.tar.gz [2025-07-31 02:14:46] [INFO] 工具已存在,跳过下载: fd-v8.7.1-x86_64-unknown-linux-gnu.tar.gz [2025-07-31 02:14:46] [INFO] 尝试 1/5: 下载 bat-v0.24.0-x86极-unknown-linux-gnu.tar.gz #=O#- # # curl: (35) OpenSSL SSL_connect: SSL_ERROR_SYSCALL in connection to ghproxy.com:443 根据错误重新生成完整、有效、可用的下载脚本、离线部署脚本、服务器系统优化脚本,并且包含系统依赖脚本,脚本要求可以重复执行。
08-01
log_error "$description 失败 (重试 $MAX_RETRY 次)" return 1 } download_with_fallback() { local url=$1 local target=$2 local description=$3 # 尝试直接下载 if curl -L --progress-bar -o "$...
[root@localhost opt]# ./download_k8s_offline.sh ./download_k8s_offline.sh:行1086: 警告:立即文档在第 1074 行被文件结束符分隔 (需要 `EOF') ./download_k8s_offline.sh:行1087: 语法错误: 未预期的文件结尾 根据错误重新生成完整、有效、可用的下载脚本、离线部署脚本、服务器系统优化脚本,并且包含系统依赖脚本,脚本要求可以重复执行。
08-01
log_error "$description 失败 (重试 $MAX_RETRY 次)" return 1 } download_with_fallback() { local url=$1 local target=$2 local description=$3 # 尝试直接下载 if curl -L --progress-bar -o "$...
高并发之Linux优化
热门推荐
Floatdellab的博客
07-14 1万+
高并发之Linux优化影响并发的主要参数net.ipv4.tcp_max_tw_buckets该参数设置系统的TIME_WAIT的数量,如果超过默认值则会被立即清除net.core.somaxconn定义了系统中每一个端口最大的监听队列的长度,这是个全局的参数net.ipv4.tcp_max_syn_backlog对于还未获得对方确认的连接请求,可保存在队列中的最大数目net.core.netdev
"net.ipv4.netfilter.ip_conntrack_max" is an unknown key
闲云野鹤专栏
10-31 2063
解决: modprobe ip_conntrack echo "modprobe ip_conntrack" >> /etc/rc.local modprobe ip_conntrack echo "modprobe ip_conntrack" >> /etc/rc.local modprobe 自动处理可载入模块 modprobe(
关于RHEL6.3 sysctl 一个错误问题的解决
枯木的Linux专栏
02-19 1万+
笔者在RHEL6.3中执行sysctl -p的时候发现输出出现以下错误 # sysctl -p net.ipv4.ip_forward = 0 net.ipv4.conf.default.rp_filter = 1 net.ipv4.conf.default.accept_source_route = 0 kernel.sysrq = 0 kernel.core_uses_pid = 1 n
安装数据库软件时配置内核参数报错
李霜的博客
05-20 532
在Redhat6.5上安装Oracle 12c时,配置内核参数时,使用sysctl -p,出错
sysctl -P 报"unknown key"错误解决办法
Isildur2010的专栏
03-11 3249
[root@oracle11gr2 Packages]# sysctl -p net.ipv4.ip_forward = 0 net.ipv4.conf.default.rp_filter = 1 net.ipv4.conf.default.accept_source_route = 0 kernel.sysrq = 0 kernel.core_uses_pid =
Centos内核报错error:net.ipv4.netfilter.ip_conntrack_maxis an unknown key
weixin_34197488的博客
09-10 1091
1.安装时,rehl5一般都是在定制完系统后才开始格式化盘,安装相关的包,而rhel6则格式化完硬盘才开始定制系统。2.rhel6修改ifcfg-eth0文件,保存后网络会马上生效,而不会像以前版本修改后改变需要重启网络3.centos6.2开始网卡ifcfg-eth0改成ifcfg-em14./etc/inittab 文件里相关设定分成了小文件# System initia...
sysctl -P 报"unknown key"错误解决办法和 mysql的配置也需要优化
大JAVA解决方案
09-12 2220
   (2016-08-19 15:27:55) 转载▼   分类: 服务器性能   [root@oracle11gr2 Packages]# sysctl -p net.ipv4.ip_forward = 0 net.ipv4.conf.default.rp_filter = 1 net.ipv4.conf.default.accept_source_route = 0 ...
sysctl -p 报错 is an unknown key
乔亚菲的博客
05-29 3773
sysctl配置与显示在/proc/sys目录中的内核参数.可以用sysctl来设置或重新设置联网功能,如IP转发、IP碎片去除以及源路由检查等。用户只需要编辑/etc/sysctl.conf文件,即可手工或自动执行由sysctl控制的功能。-a 显示所有的系统参数-p 从指定的文件加载系统参数,如不指定即从/etc/sysctl.conf中加载如果仅仅是想临时改变某个系统参数的值,可以用两
linux ip_conntrack_max,ip_conntrack_max满导致无法建立链接
weixin_31363913的博客
05-06 1091
一台访问量较高的服务器出现严重的丢包和无法建立链接的情况,已经确认数据中心网络没有问题,怀疑服务器自身出现问题。进入服务器发现网卡并没有error,内部运行的web服务均正常,但是仍然会出现断流和丢包现象,初步怀疑是在系统方面。一、执行demsg发现大量“VE0: nf_conntrack: table full, dropping packet.”的错误提示,确定是ip_conntrack跟踪连...
评论
成就一亿技术人!
拼手气红包6.0元
还能输入1000个字符  | 博主筛选后可见
 
红包 添加红包
表情包 插入表情
表情包 代码片
 条评论被折叠 查看
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值