nanog mailing list archives

Re: TCP time_wait and port exhaustion for servers

From: Jon Lewis <jlewis () lewis org>
Date: Wed, 5 Dec 2012 20:44:43 -0500 (EST)

On Wed, 5 Dec 2012, Cyril Bouthors wrote:

On  5 Dec 2012, rps () maine edu wrote:

Where there is no way to change this though /proc


10:17PM lenovo:~% sudo sysctl -a |grep wait
net.netfilter.nf_conntrack_tcp_timeout_fin_wait = 120
net.netfilter.nf_conntrack_tcp_timeout_close_wait = 60
net.netfilter.nf_conntrack_tcp_timeout_time_wait = 120
net.ipv4.netfilter.ip_conntrack_tcp_timeout_fin_wait = 120
net.ipv4.netfilter.ip_conntrack_tcp_timeout_close_wait = 60
net.ipv4.netfilter.ip_conntrack_tcp_timeout_time_wait = 120

Those netfilter connection tracking tunables have nothing to do with thekernel's TCP socket handling.


----------------------------------------------------------------------
 Jon Lewis, MCP :)           |  I route
 Senior Network Engineer     |  therefore you are
 Atlantic Net                |
_________ http://www.lewis.org/~jlewis/pgp for PGP public key_________

Current thread:

Re: TCP time_wait and port exhaustion for servers, (continued)
- - - Re: TCP time_wait and port exhaustion for servers Mark Andrews (Dec 05)
    - Re: TCP time_wait and port exhaustion for servers Mark Andrews (Dec 05)
    - Re: TCP time_wait and port exhaustion for servers William Herrin (Dec 05)
    - Re: TCP time_wait and port exhaustion for servers Jon Lewis (Dec 05)
    - Re: TCP time_wait and port exhaustion for servers Fred Baker (fred) (Dec 05)
    - Re: TCP time_wait and port exhaustion for servers David Conrad (Dec 05)
    - RE: TCP time_wait and port exhaustion for servers Terry Baranski (Dec 05)
    - Re: TCP time_wait and port exhaustion for servers Ray Soucy (Dec 05)
- Re: TCP time_wait and port exhaustion for servers Owen DeLong (Dec 05)
- Re: TCP time_wait and port exhaustion for servers Cyril Bouthors (Dec 05)
  - Re: TCP time_wait and port exhaustion for servers Jon Lewis (Dec 05)
  - Re: TCP time_wait and port exhaustion for servers Ray Soucy (Dec 06)
- Re: TCP time_wait and port exhaustion for servers Mark Andrews (Dec 05)
- Re: TCP time_wait and port exhaustion for servers Kyrian (Dec 06)
  - Re: TCP time_wait and port exhaustion for servers Ray Soucy (Dec 06)
    - Re: TCP time_wait and port exhaustion for servers Kyrian (Dec 06)
    - Re: TCP time_wait and port exhaustion for servers William Allen Simpson (Dec 06)
    - Re: TCP time_wait and port exhaustion for servers Jean-Francois Mezei (Dec 06)
    - Re: TCP time_wait and port exhaustion for servers Ray Soucy (Dec 06)
    - Re: TCP time_wait and port exhaustion for servers Matthew Palmer (Dec 07)
    - Re: TCP time_wait and port exhaustion for servers Ray Soucy (Dec 07)