|
remove stuuborn connections
Dear all,
I have an issue with my lvs, whereby, the server does not notice that the client side connection has been closed and keeps sending messages to a dead client. i looked at the conntrack and it doesnt seem to have an issue there. [root@lb-01 netfilter]# sysctl -a |grep conntrack net.ipv4.ip_conntrack_max = 65536 net.ipv4.netfilter.ip_conntrack_tcp_max_retrans = 3 net.ipv4.netfilter.ip_conntrack_tcp_be_liberal = 0 net.ipv4.netfilter.ip_conntrack_tcp_loose = 3 net.ipv4.netfilter.ip_conntrack_tcp_timeout_max_retrans = 300 net.ipv4.netfilter.ip_conntrack_log_invalid = 0 net.ipv4.netfilter.ip_conntrack_generic_timeout = 600 net.ipv4.netfilter.ip_conntrack_icmp_timeout = 30 net.ipv4.netfilter.ip_conntrack_udp_timeout_stream = 180 net.ipv4.netfilter.ip_conntrack_udp_timeout = 30 net.ipv4.netfilter.ip_conntrack_tcp_timeout_close = 10 net.ipv4.netfilter.ip_conntrack_tcp_timeout_time_wait = 120 net.ipv4.netfilter.ip_conntrack_tcp_timeout_last_ack = 30 net.ipv4.netfilter.ip_conntrack_tcp_timeout_close_wait = 60 net.ipv4.netfilter.ip_conntrack_tcp_timeout_fin_wait = 120 net.ipv4.netfilter.ip_conntrack_tcp_timeout_established = 432000 net.ipv4.netfilter.ip_conntrack_tcp_timeout_syn_recv = 60 net.ipv4.netfilter.ip_conntrack_tcp_timeout_syn_sent = 120 net.ipv4.netfilter.ip_conntrack_checksum = 1 net.ipv4.netfilter.ip_conntrack_buckets = 8192 net.ipv4.netfilter.ip_conntrack_count = 488 net.ipv4.netfilter.ip_conntrack_max = 65536 It only happens for the virtual connection. If i connect to the real server, its perfectly fine. Please do help |
you might be able to kill this activity using tcpkill. I would, however, report it as well as it seems like it is a bug.
|
| All times are GMT -5. The time now is 04:16 AM. |