AX6000的活动连接上限数量不正确

Super***

固件是我自己云编译来的，云编译脚本以及项目地址是采用这位大佬的 云编译

刷好后我才注意到活动连接数上限和我之前刷的固件不一样，这个固件才3w多点。我记得我刷的其他固件有65535
请问这是什么原因

Ngh***

NAT允许的最大数量，你要是软件实现的NAT，在这里改

1. #/etc/sysctl.conf
   
2. net.netfilter.nf_conntrack_max = 1234
   
3. net.nf_conntrack_max = 1234

复制代码

硬件实现的NAT跟路由器解决方案有关，你这种情况应该是mediatek_soc_hnat ppe num 为1。就是3w多个
你可以在源代码中观察到这个行为

1. static int hnat_probe(struct platform_device *pdev)
   
2. {
   
3.     int i;
   
4.     int err = 0;
   
5.     int index = 0;
   
6.     struct resource *res;
   
7.     const char *name;
   
8.     struct device_node *np;
   
9.     unsigned int val;
   
10.     struct property *prop;
    
11.     struct extdev_entry *ext_entry;
    
12.     const struct of_device_id *match;
    
13. 
    
14.     hnat_priv = devm_kzalloc(&pdev->dev, sizeof(struct mtk_hnat), GFP_KERNEL);
    
15.     if (!hnat_priv)
    
16.         return -ENOMEM;
    
17. 
    
18.     hnat_priv->foe_etry_num = DEF_ETRY_NUM;
    
19. 
    
20.     match = of_match_device(of_hnat_match, &pdev->dev);
    
21.     if (unlikely(!match))
    
22.         return -EINVAL;
    
23. 
    
24.     hnat_priv->data = (struct mtk_hnat_data *)match->data;
    
25. 
    
26.     hnat_priv->dev = &pdev->dev;
    
27.     np = hnat_priv->dev->of_node;
    
28. 
    
29.     err = of_property_read_string(np, "mtketh-wan", &name);
    
30.     if (err < 0)
    
31.         return -EINVAL;
    
32. 
    
33.     strncpy(hnat_priv->wan, (char *)name, IFNAMSIZ - 1);
    
34.     dev_info(&pdev->dev, "wan = %s\n", hnat_priv->wan);
    
35. 
    
36.     err = of_property_read_string(np, "mtketh-lan", &name);
    
37.     if (err < 0)
    
38.         strncpy(hnat_priv->lan, "eth0", IFNAMSIZ);
    
39.     else
    
40.         strncpy(hnat_priv->lan, (char *)name, IFNAMSIZ - 1);
    
41.     dev_info(&pdev->dev, "lan = %s\n", hnat_priv->lan);
    
42. 
    
43.     err = of_property_read_string(np, "mtketh-ppd", &name);
    
44.     if (err < 0)
    
45.         strncpy(hnat_priv->ppd, "eth0", IFNAMSIZ);
    
46.     else
    
47.         strncpy(hnat_priv->ppd, (char *)name, IFNAMSIZ - 1);
    
48.     dev_info(&pdev->dev, "ppd = %s\n", hnat_priv->ppd);
    
49. 
    
50.     /*get total gmac num in hnat*/
    
51.     err = of_property_read_u32_index(np, "mtketh-max-gmac", 0, &val);
    
52. 
    
53.     if (err < 0)
    
54.         return -EINVAL;
    
55. 
    
56.     hnat_priv->gmac_num = val;
    
57. 
    
58.     dev_info(&pdev->dev, "gmac num = %d\n", hnat_priv->gmac_num);
    
59. 
    
60.     err = of_property_read_u32_index(np, "mtkdsa-wan-port", 0, &val);
    
61. 
    
62.     if (err < 0) {
    
63.         hnat_priv->wan_dsa_port = NONE_DSA_PORT;
    
64.     } else {
    
65.         hnat_priv->wan_dsa_port = val;
    
66.         dev_info(&pdev->dev, "wan dsa port = %d\n", hnat_priv->wan_dsa_port);
    
67.     }
    
68. 
    
69.     err = of_property_read_u32_index(np, "mtketh-ppe-num", 0, &val);
    
70. 
    
71.     if (err < 0)
    
72.         hnat_priv->ppe_num = 1;
    
73.     else
    
74.         hnat_priv->ppe_num = val;
    
75. 
    
76.     dev_info(&pdev->dev, "ppe num = %d\n", hnat_priv->ppe_num);  // -------------------------------------------------------------here----------------------------------------------------------
    
77. 
    
78.     res = platform_get_resource(pdev, IORESOURCE_MEM, 0);
    
79.     if (!res)
    
80.         return -ENOENT;
    
81. 
    
82.     hnat_priv->fe_base = devm_ioremap_nocache(&pdev->dev, res->start,
    
83.                          res->end - res->start + 1);
    
84.     if (!hnat_priv->fe_base)
    
85.         return -EADDRNOTAVAIL;
    
86. 
    
87. #if defined(CONFIG_MEDIATEK_NETSYS_V2)
    
88.     hnat_priv->ppe_base[0] = hnat_priv->fe_base + 0x2200;
    
89. 
    
90.     if (CFG_PPE_NUM > 1)
    
91.         hnat_priv->ppe_base[1] = hnat_priv->fe_base + 0x2600;
    
92. #else
    
93.     hnat_priv->ppe_base[0] = hnat_priv->fe_base + 0xe00;
    
94. #endif
    
95. 
    
96.     hnat_priv->ipv6_en = true; /* enable ipv6 by default */
    
97.     hnat_priv->guest_en = true; /* enable guest wifi by default */
    
98. 
    
99.     err = hnat_init_debugfs(hnat_priv);
    
100.     if (err)
     
101.         return err;
     
102. 
     
103.     prop = of_find_property(np, "ext-devices", NULL);
     
104.     for (name = of_prop_next_string(prop, NULL); name;
     
105.          name = of_prop_next_string(prop, name), index++) {
     
106.         ext_entry = kzalloc(sizeof(*ext_entry), GFP_KERNEL);
     
107.         if (!ext_entry) {
     
108.             err = -ENOMEM;
     
109.             goto err_out1;
     
110.         }
     
111.         strncpy(ext_entry->name, (char *)name, IFNAMSIZ - 1);
     
112.         ext_if_add(ext_entry);
     
113.     }
     
114. 
     
115.     for (i = 0; i < MAX_EXT_DEVS && hnat_priv->ext_if[i]; i++) {
     
116.         ext_entry = hnat_priv->ext_if[i];
     
117.         dev_info(&pdev->dev, "ext devices = %s\n", ext_entry->name);
     
118.     }
     
119. 
     
120.     hnat_priv->lvid = 1;
     
121.     hnat_priv->wvid = 2;
     
122. 
     
123.     for (i = 0; i < CFG_PPE_NUM; i++) {
     
124.         err = hnat_start(i);
     
125.         if (err)
     
126.             goto err_out;
     
127.     }
     
128. 
     
129.     if (hnat_priv->data->whnat) {
     
130.         err = whnat_adjust_nf_hooks();
     
131.         if (err)
     
132.             goto err_out;
     
133.     }
     
134. 
     
135.     err = hnat_enable_hook();
     
136.     if (err)
     
137.         goto err_out;
     
138. 
     
139.     register_netdevice_notifier(&nf_hnat_netdevice_nb);
     
140.     register_netevent_notifier(&nf_hnat_netevent_nb);
     
141. 
     
142.     if (hnat_priv->data->mcast) {
     
143.         for (i = 0; i < CFG_PPE_NUM; i++)
     
144.             hnat_mcast_enable(i);
     
145.     }
     
146. 
     
147.     timer_setup(&hnat_priv->hnat_sma_build_entry_timer, hnat_sma_build_entry, 0);
     
148.     if (hnat_priv->data->version == MTK_HNAT_V3) {
     
149.         timer_setup(&hnat_priv->hnat_reset_timestamp_timer, hnat_reset_timestamp, 0);
     
150.         hnat_priv->hnat_reset_timestamp_timer.expires = jiffies;
     
151.         add_timer(&hnat_priv->hnat_reset_timestamp_timer);
     
152.     }
     
153. 
     
154.     if (IS_HQOS_MODE && IS_GMAC1_MODE)
     
155.         dev_add_pack(&mtk_pack_type);
     
156. 
     
157.     err = hnat_roaming_enable();
     
158.     if (err)
     
159.         pr_info("hnat roaming work fail\n");
     
160. 
     
161.     return 0;
     
162. 
     
163. err_out:
     
164.     for (i = 0; i < CFG_PPE_NUM; i++)
     
165.         hnat_stop(i);
     
166. err_out1:
     
167.     hnat_deinit_debugfs(hnat_priv);
     
168.     for (i = 0; i < MAX_EXT_DEVS && hnat_priv->ext_if[i]; i++) {
     
169.         ext_entry = hnat_priv->ext_if[i];
     
170.         ext_if_del(ext_entry);
     
171.         kfree(ext_entry);
     
172.     }
     
173.     return err;
     
174. }

复制代码

iamy***

闭源的HNAT都这样。3W还不够你家用的吗

Blac***

echo 65535 >/proc/sys/net/netfilter/nf_conntrack_expect_max
echo 65535 >/proc/sys/net/netfilter/nf_conntrack_max

Super***

NghDYq 发表于 2023-11-1 23:28
NAT允许的最大数量，你要是软件实现的NAT，在这里改
硬件实现的NAT跟路由器解决方案有关，你这种情况应该是 ...

感谢您的回答，我明白原因了

Super***

iamyangyi 发表于 2023-11-1 23:52
闭源的HNAT都这样。3W还不够你家用的吗

我把软件NAT和硬件NAT各自的上限搞混了

Super***

BlackZeE 发表于 2023-11-2 00:25
echo 65535 >/proc/sys/net/netfilter/nf_conntrack_expect_max
echo 65535 >/proc/sys/net/netfilter/nf_c ...

这是软件NAT设置上限的数量，还是感谢您的答复

时不时***

237的不是支持65535