Disable connection tracking with UFW for port 80

linux ubuntu firewall ufw

During load testing my server is dropping packets due to "connection tracking" way before it's running out of resources. I'm using Ubuntu Jaunty with ufw. In my syslog I get:

ip_conntrack: table full, dropping packet.

I looked at upping the max connection table size, but I don't know of an advantage for tracking these connections on these ports. I would like to know how to use ufw to tell it not to track requests to port 80 and 443.

Clarifying

  • No natting needed, it's just a web server.

Thank you.


iptables -A PREROUTING -p tcp --dport 80 -j NOTRACK 
iptables -A PREROUTING -p tcp --dport 443 -j NOTRACK

will disable connection tracking just for these ports.

Related

Decommissioning: how to list clients/applications depending on my SQL Server?
How do I set up a reverse zone file?
Are there simpler ways to do traffic shaping in linux besides tc?
How does DNS "get stuck"?
How to prevent Git client hanging during post-receive hook
Pass an USB hub from a KVM host to a guest with libvirt
Compatability error Installing Sharepoint w/ SP1 on Windows 2008 R2 RC
Windows Backup to network share (Server 2008)
How do I reduce RAM usage on my server?
HP Proliant G6 reporting failed SSD drive - alternative strategies for monitoring?
Cannot connect to a Hyper-V Virtual Machine
How to wait for network in a batch script when booting on Windows Server?