[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

TCP time_wait and port exhaustion for servers

Subject: TCP time_wait and port exhaustion for servers
From: jlewis at lewis.org (Jon Lewis)
Date: Wed, 5 Dec 2012 20:44:43 -0500 (EST)
In-reply-to: <[email protected]>
References: <CALFTrnNj2e9HUjukAUi-jtTsuGTugxe2-iEpm8v+wk8JKnuBQA@mail.gmail.com> <[email protected]>

On Wed, 5 Dec 2012, Cyril Bouthors wrote:

> On  5 Dec 2012, rps at maine.edu wrote:
>
>> Where there is no way to change this though /proc
>
> 10:17PM lenovo:~% sudo sysctl -a |grep wait
> net.netfilter.nf_conntrack_tcp_timeout_fin_wait = 120
> net.netfilter.nf_conntrack_tcp_timeout_close_wait = 60
> net.netfilter.nf_conntrack_tcp_timeout_time_wait = 120
> net.ipv4.netfilter.ip_conntrack_tcp_timeout_fin_wait = 120
> net.ipv4.netfilter.ip_conntrack_tcp_timeout_close_wait = 60
> net.ipv4.netfilter.ip_conntrack_tcp_timeout_time_wait = 120

Those netfilter connection tracking tunables have nothing to do with the 
kernel's TCP socket handling.

----------------------------------------------------------------------
  Jon Lewis, MCP :)           |  I route
  Senior Network Engineer     |  therefore you are
  Atlantic Net                |
_________ http://www.lewis.org/~jlewis/pgp for PGP public key_________

References:
- TCP time_wait and port exhaustion for servers
  - From: rps at maine.edu (Ray Soucy)
- TCP time_wait and port exhaustion for servers
  - From: cyril at bouthors.org (Cyril Bouthors)

Prev by Date: TCP time_wait and port exhaustion for servers
Next by Date: TCP time_wait and port exhaustion for servers
Previous by thread: TCP time_wait and port exhaustion for servers
Next by thread: TCP time_wait and port exhaustion for servers
Index(es):
- Date
- Thread