From e1b21f23c9ca00bf9f399165c4d46d647f3946ca Mon Sep 17 00:00:00 2001
From: Paolo Abeni <pabeni@redhat.com>
Date: Wed, 9 Feb 2022 17:15:46 +0100
Subject: [PATCH] raise the netfilter hash table size in
 openshift/atomic-{host,guest} to match the max netfilter conntrack entries,
 reducing such hash table load.

Signed-off-by: Paolo Abeni <pabeni@redhat.com>
---
 profiles/atomic-guest/tuned.conf | 2 +-
 profiles/atomic-host/tuned.conf  | 2 +-
 profiles/openshift/tuned.conf    | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/profiles/atomic-guest/tuned.conf b/profiles/atomic-guest/tuned.conf
index c5a9417d..fe8d382a 100644
--- a/profiles/atomic-guest/tuned.conf
+++ b/profiles/atomic-guest/tuned.conf
@@ -10,7 +10,7 @@ include=virtual-guest
 avc_cache_threshold=65536
 
 [net]
-nf_conntrack_hashsize=131072
+nf_conntrack_hashsize=1048576
 
 [sysctl]
 kernel.pid_max=131072
diff --git a/profiles/atomic-host/tuned.conf b/profiles/atomic-host/tuned.conf
index 968366fa..91ea5555 100644
--- a/profiles/atomic-host/tuned.conf
+++ b/profiles/atomic-host/tuned.conf
@@ -10,7 +10,7 @@ include=throughput-performance
 avc_cache_threshold=65536
 
 [net]
-nf_conntrack_hashsize=131072
+nf_conntrack_hashsize=1048576
 
 [sysctl]
 kernel.pid_max=131072
diff --git a/profiles/openshift/tuned.conf b/profiles/openshift/tuned.conf
index 9019c05e..9815fb9e 100644
--- a/profiles/openshift/tuned.conf
+++ b/profiles/openshift/tuned.conf
@@ -10,7 +10,7 @@ include=${f:virt_check:virtual-guest:throughput-performance}
 avc_cache_threshold=8192
 
 [net]
-nf_conntrack_hashsize=131072
+nf_conntrack_hashsize=1048576
 
 [sysctl]
 net.ipv4.ip_forward=1