LinuxQuestions.org
Latest LQ Deal: Complete CCNA, CCNP & Red Hat Certification Training Bundle
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 04-08-2004, 11:14 AM   #1
cli_man
Member
 
Registered: Apr 2002
Location: New York, USA
Distribution: Redhat 7.2, 9.0 Slackware 9.1
Posts: 428

Rep: Reputation: 30
Max connections from a IP


I have just set up an IDS server, it is a linux server running snort and we have it set as our default gateway, we used to have our squid cache server (also linux) set as our default gateway. The cache server only ever used about 25% of its cpu when it was handling all the traffic as the gateway but now that I have made the IDS server the gateway and am redirecting all port 80 traffic to the cache server the cache server is using 100% of the cpu all the time.

On the ids I am using iptables to redirect the traffic here are the rules I have in it:

Code:
iptables -t nat -A PREROUTING -s  63.166.92.0/23 -p tcp --dport 80 -j
DNAT --to 63.174.233.5:3128
iptables -t nat -A POSTROUTING -s 63.166.92.0/23 -d 63.174.233.5 -j
SNAT --to 63.174.233.2
63.166.92.0/23 is our dialins I am trying to redirect to the cache
63.174.233.5 is our cache server
63.174.233.2 is our IDS machine and gateway

The cache machine is only handling about a third of the load it was doing but now it is maxing on cpu, it has about 400 - 500 concurent connections, the only difference is instead of coming from about 400 clients it is all coming from the ip of the IDS server. The IDS server is only using about 2% of its cpu.

Does anyone have any ideas of what this could be?
 
Old 04-08-2004, 03:21 PM   #2
tarballedtux
Member
 
Registered: Aug 2001
Location: Off the coast of Madadascar
Posts: 498

Rep: Reputation: 30
Maybe I am not reading this right but what is the purpose of the second command?
Seems it should work without the second command.


--tarballedtux
 
Old 04-08-2004, 03:57 PM   #3
cli_man
Member
 
Registered: Apr 2002
Location: New York, USA
Distribution: Redhat 7.2, 9.0 Slackware 9.1
Posts: 428

Original Poster
Rep: Reputation: 30
That is what I though, I found the documentation at http://en.tldp.org/HOWTO/TransparentProxy-6.html I tried it with just the first command and my http request would go to the cache server but it would not find its way back and the connection would hang.

I am wondering if there is a max number of connections allowed from one ip to another.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
How to increase apache max connections? newlinuxnewbie Linux - General 5 08-29-2008 04:53 AM
APACHE: limit max connections from the same IP ? tclwp Linux - Networking 3 06-24-2005 12:47 PM
increase max cuncurrent connections eyalr Linux - Networking 1 01-27-2005 01:39 PM
max connections yuhuashi Programming 1 09-25-2004 11:38 AM
IE max connections mrozkan General 16 03-20-2004 10:20 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 11:36 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration