From 0ab0890b58a039aafc651cdb195a90e86dec8535 Mon Sep 17 00:00:00 2001
From: Kevin Fenzi <kevin@scrye.com>
Date: Fri, 30 Jul 2021 17:52:05 -0700
Subject: [PATCH] proxies: bump nf_conntrack_max to a high value

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
---
 playbooks/groups/proxies.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/playbooks/groups/proxies.yml b/playbooks/groups/proxies.yml
index 7325bcf4cc..ae25471f8f 100644
--- a/playbooks/groups/proxies.yml
+++ b/playbooks/groups/proxies.yml
@@ -41,6 +41,9 @@
   #- import_tasks: "{{ tasks_path }}/apache.yml"
   #- import_tasks: "{{ tasks_path }}/mod_wsgi.yml"
 
+  - name: set ip_conntrack_max to a high value as the proxies deal with lots of connections
+    sysctl: name=net.nf_conntrack_max valuei=26214400 state=present sysctl_set=yes reload=yes
+
   handlers:
   - import_tasks: "{{ handlers_path }}/restart_services.yml"