From d9e39f00aa5087e85ebb68d520fb5e489f8298a8 Mon Sep 17 00:00:00 2001
From: Markus Gothe <markus.gothe@genexis.eu>
Date: Wed, 29 Sep 2021 13:25:36 +0200
Subject: [PATCH] Bug #5807 - nf_conntrack: nf_conntrack: table full, dropping
 packet

Disable ipv6 forwarding on the dummy archer interface.

Broadcom suggest that we disable IPv6 on the dummy interface
called 'archer'. This seems to solve the issue with leaking
memory / connection tracking entries.
---
 iopsys-brcm63xx-arm/disc/base-files/etc/sysctl.d/archer.conf  | 1 +
 iopsys-brcm63xx-arm/eagle/base-files/etc/sysctl.d/archer.conf | 1 +
 iopsys-brcm63xx-arm/zebra/base-files/etc/sysctl.d/archer.conf | 1 +
 3 files changed, 3 insertions(+)
 create mode 100644 iopsys-brcm63xx-arm/disc/base-files/etc/sysctl.d/archer.conf
 create mode 100644 iopsys-brcm63xx-arm/eagle/base-files/etc/sysctl.d/archer.conf
 create mode 100644 iopsys-brcm63xx-arm/zebra/base-files/etc/sysctl.d/archer.conf

diff --git a/iopsys-brcm63xx-arm/disc/base-files/etc/sysctl.d/archer.conf b/iopsys-brcm63xx-arm/disc/base-files/etc/sysctl.d/archer.conf
new file mode 100644
index 000000000..2e0834abc
--- /dev/null
+++ b/iopsys-brcm63xx-arm/disc/base-files/etc/sysctl.d/archer.conf
@@ -0,0 +1 @@
+net.ipv6.conf.archer.disable_ipv6=1
diff --git a/iopsys-brcm63xx-arm/eagle/base-files/etc/sysctl.d/archer.conf b/iopsys-brcm63xx-arm/eagle/base-files/etc/sysctl.d/archer.conf
new file mode 100644
index 000000000..2e0834abc
--- /dev/null
+++ b/iopsys-brcm63xx-arm/eagle/base-files/etc/sysctl.d/archer.conf
@@ -0,0 +1 @@
+net.ipv6.conf.archer.disable_ipv6=1
diff --git a/iopsys-brcm63xx-arm/zebra/base-files/etc/sysctl.d/archer.conf b/iopsys-brcm63xx-arm/zebra/base-files/etc/sysctl.d/archer.conf
new file mode 100644
index 000000000..2e0834abc
--- /dev/null
+++ b/iopsys-brcm63xx-arm/zebra/base-files/etc/sysctl.d/archer.conf
@@ -0,0 +1 @@
+net.ipv6.conf.archer.disable_ipv6=1
-- 
GitLab