sudo sysctl net.netfilter.nf_conntrack_buckets
# 只读