Error: nf_conntrack: table full, dropping packet

Проверить
sysctl -a | grep conntrack_max

Увеличить
echo net.nf_conntrack_max=196608 >> /etc/sysctl.conf

Применить
sysctl -p

Оптимизация tcp/ip для большого числа соединений

net.ipv4.conf.all.accept_redirects = 0
net.ipv4.conf.eth0.accept_redirects = 0
net.ipv4.conf.default.accept_redirects = 0
net.core.rmem_max = 996777216
net.core.wmem_max = 996777216
net.ipv4.tcp_rmem = 4096 87380 4194304
net.ipv4.tcp_mem= 786432 1048576 996777216
net.ipv4.tcp_wmem = 4096 87380 4194304
net.ipv4.tcp_max_orphans = 2255360
net.core.netdev_max_backlog = 10000
net.ipv4.tcp_fin_timeout = 10
net.ipv4.tcp_keepalive_intvl = 15
net.ipv4.tcp_max_syn_backlog = 2048
net.ipv4.tcp_synack_retries = 1
kernel.msgmnb = 65536
kernel.msgmax = 65536
kernel.shmmax = 494967295

User tags

mariadb cpanm vlan routing ip ipmi usb centos 7 munin limit_conn debootstrap LSI in-addr.arpa puppet cgroups bscan dns zRam rsync sftp mount fio bug iSCSI dovecot groups gtk apache chroot core dump vrrpd bash MODx ulimit sg rpm pacemaker opcontrol alsa exim CentOS PXE wget LVM nginx cluster numa shellshock Salt mysql deb radeon search bridge rtl8723be mdadm arp docker-compose perl ubuntu dhclient su drupal apt pulseaudio dpkg virsh replication flash dhcp bind backup lxc ardour sysctl.conf fido7 language tftp chromium cpu lstat netfilter graylog2 lenny ipmitool ansible iops swap leap second gre ha shorewall Swift sysrq iptables soa exim4 nvidia cpu usage virt-install etch ssh debian cache encrypt 3Ware qemu SYN iostat arch HDFS DRBD find ps PTR kernel tin java alien tar .htaccess sublime hdparm git php raid StorMan lubuntu pam tzdata asoundrc newgrp openvpn opreport proxy mkfs glxinfo KVM keyboard pvmove APU arping SpamAssassin hotplug cfq build NFS backtrace wordpress taskset sysresccd tiger conntrack SuperMicro vim equalizer RT squeeze bacula performance MegaRAID tun xhost elliptics virtualbox CPAN rtsp xen sysfs htop rkhunter docker dstat AMD nfs4 top route ddos iowait corosync storage profiling gpg Areca youtube lts gdb qcow2 Adaptec grub oprofile raid5 xfs vrrp regex slab noop OpenStack idmapd security erase bonding OpenSSL SSD perlbrew freedos scsi initrd firefox parallel vtysh fail2ban source HTTPS glusterfs jackd xargs X forwarding sysctl boot tool /etc/network/interfaces video quagga