[158637] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: TCP time_wait and port exhaustion for servers

daemon@ATHENA.MIT.EDU (Cyril Bouthors)
Wed Dec 5 17:19:53 2012

From: Cyril Bouthors <cyril@bouthors.org>
To: Ray Soucy <rps@maine.edu>
Date: Wed, 05 Dec 2012 22:18:48 +0100
In-Reply-To: <CALFTrnNj2e9HUjukAUi-jtTsuGTugxe2-iEpm8v+wk8JKnuBQA@mail.gmail.com>
 (Ray Soucy's message of "Wed, 5 Dec 2012 10:59:35 -0500")
Cc: NANOG <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org

On  5 Dec 2012, rps@maine.edu wrote:

> Where there is no way to change this though /proc

10:17PM lenovo:~% sudo sysctl -a |grep wait
net.netfilter.nf_conntrack_tcp_timeout_fin_wait =3D 120
net.netfilter.nf_conntrack_tcp_timeout_close_wait =3D 60
net.netfilter.nf_conntrack_tcp_timeout_time_wait =3D 120
net.ipv4.netfilter.ip_conntrack_tcp_timeout_fin_wait =3D 120
net.ipv4.netfilter.ip_conntrack_tcp_timeout_close_wait =3D 60
net.ipv4.netfilter.ip_conntrack_tcp_timeout_time_wait =3D 120
10:17PM lenovo:~%=20

?

We use this to work around the default limit on our internal load balancers.

HIH.
--=20
Cyril Bouthors - Administration Syst=C3=A8me, Infog=C3=A9rance
ISVTEC SARL, 14 avenue de l'Op=C3=A9ra, 75001 Paris
1 rue =C3=89mile Zola, 69002 Lyon
T=C3=A9l : 01 84 16 16 17 - Fax : 01 77 72 57 24
Ligne directe : 0x7B9EE3B0E


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[158637] in North American Network Operators' Group

Re: TCP time_wait and port exhaustion for servers

daemon@ATHENA.MIT.EDU (Cyril Bouthors)Wed Dec 5 17:19:53 2012

daemon@ATHENA.MIT.EDU (Cyril Bouthors)
Wed Dec 5 17:19:53 2012