Page MenuHomeVyOS Platform
Create Task
Maniphest T1699

Default net.ipv6.route.max_size 32768 is too low
Closed, ResolvedPublic
Actions

Description

There are about 70k routes in the current DFZ. It's time to increase VyOS's default…? But as someone who has encountered "issues" with the potential for kernel resource exhaustion by IPv6 routes — https://www.youtube.com/watch?v=R0INwMN6FFE — I would exercise caution against setting it to something inappropriate.

And maybe it's worth reconsidering whether sys.net.ipv4.route.max_size having the humongous value of 2147483647 is sane. At least with IPv4 (and with more recent kernels for IPv6) you can't grow the routing table size without bound by scanning network address-space :)

Details

Difficulty level
Unknown (require assessment)
Version
1.2.0-rolling+201906220337
Why the issue appeared?
Will be filled on close
Is it a breaking change?
Unspecified (possibly destroys the router)

Related Objects

Event Timeline

maznu created this task.Sep 29 2019, 12:18 PM
maznu created this object in space S1 VyOS Public.
Unknown Object (User) added a subscriber: Unknown Object (User).Sep 29 2019, 2:41 PM

@maznu , you can also set this manually set system sysctl custom net.ipv6.route.max_size value 143360, but seems default value is really small.

maznu added a comment.Sep 29 2019, 8:50 PM

Agreed, I'm going to workaround with set system sysctl custom, but also submit a PR: https://github.com/vyos/vyatta-cfg-system/pull/107

dmbaturin closed this task as Resolved.Jun 18 2020, 10:36 PM
dmbaturin claimed this task.
dmbaturin added a project: VyOS 1.2 Crux.
dmbaturin edited projects, added VyOS 1.2 Crux (VyOS 1.2.6); removed VyOS 1.2 Crux.Jun 18 2020, 10:39 PM
c-po moved this task from Needs Triage to Finished on the VyOS 1.2 Crux (VyOS 1.2.6) board.Jun 26 2020, 4:04 PM
thomas-mangin mentioned this in T2214: BGP peers dropping randomly.Jul 30 2020, 3:08 PM
pasik added a subscriber: pasik.Jul 31 2020, 7:45 AM
erkin renamed this task from net.ipv6.route.max_size = 32768 to Default net.ipv6.route.max_size 32768 is too low.Sep 9 2020, 12:58 PM