Welcome to Centmin Mod Community
Become a Member

CSF CMM user: What's your current value for "USE_CONNTRACK" ?

Discussion in 'Centmin Mod Insights' started by RoldanLT, Mar 7, 2016.

  1. RoldanLT

    RoldanLT Well-Known Member

    3,831
    929
    113
    May 25, 2014
    Phillipines
    Ratings:
    +1,258
    Local Time:
    3:01 PM
    1.11
    10.2
    Config located on: /etc/csf/csf.conf
    I'm confuse why is it my default install OVH server has different value than other servers I have.

     
  2. eva2000

    eva2000 Administrator Staff Member

    29,053
    6,594
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +9,790
    Local Time:
    5:01 PM
    Nginx 1.13.x
    MariaDB 5.5
    CSF only enables USE_CONNTRACK when Linux 3.7+ Kernels are detected so yes it varies depending on your Linux kernel version. I think only Linode is only provider with CentOS 6 and 7 defaulting to Linux 4.4 Kernels right now.
     
  3. RoldanLT

    RoldanLT Well-Known Member

    3,831
    929
    113
    May 25, 2014
    Phillipines
    Ratings:
    +1,258
    Local Time:
    3:01 PM
    1.11
    10.2
    Even all my Linode CentOS server has 0 value/disabled.
     
  4. eva2000

    eva2000 Administrator Staff Member

    29,053
    6,594
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +9,790
    Local Time:
    5:01 PM
    Nginx 1.13.x
    MariaDB 5.5
    strange then my Linodes have it enabled

    CSF changelog for v5.78 which is ancient
    edit: okay my CentOS 6 Linode has it enabled, my CentOS 7 have it disabled

    might need to ask on CSF support forums ConfigServer Community Forum - Index page
     
  5. RoldanLT

    RoldanLT Well-Known Member

    3,831
    929
    113
    May 25, 2014
    Phillipines
    Ratings:
    +1,258
    Local Time:
    3:01 PM
    1.11
    10.2
    And I think when this is enabled on unknwon reason it cause me some issue.
    Like:
    • Can't use Akismet, always giving timeout error on server error log (posting takes a minute to succesfully post) / After I have it disabed I don't have this issue anymore so my assumption is 99% correct here)
    • Saving some option on XF admin takes 1 minute to load
    • Some weird issue happen sometimes loading a page takes forever without loading successfully, unless I stop and hit the link again and it loads fine (I have seen this issue also by some user's here).
    I'll observe my forum again on new OVH server, If I will not encounter those issue again then this single option on CSF is a massive messed that can cause some big issue.
     
  6. eva2000

    eva2000 Administrator Staff Member

    29,053
    6,594
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +9,790
    Local Time:
    5:01 PM
    Nginx 1.13.x
    MariaDB 5.5
    sounds like nf_conntrack limit being hit, you can disable it USE_CONNTRACK = "0" in /etc/csf/csf.conf and restart csf service.
     
  7. RoldanLT

    RoldanLT Well-Known Member

    3,831
    929
    113
    May 25, 2014
    Phillipines
    Ratings:
    +1,258
    Local Time:
    3:01 PM
    1.11
    10.2
    I track this down, and I can say it's Cloudflare that prevents me from saving XF Spam Admin Options since I have 40+ spam keyword there.
    I added /admin.php on CF Page rules and problem solved.
     
    • Informative Informative x 1
  8. eva2000

    eva2000 Administrator Staff Member

    29,053
    6,594
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +9,790
    Local Time:
    5:01 PM
    Nginx 1.13.x
    MariaDB 5.5
    interesting indeed !