Hello,
On Tue, 5 May 2020, Abhijeet Rastogi wrote:
> >IPVS also has sysctl vars that can release IPVS structures on memory
> pressure
>
> Are you referring to drop_entry? Doc says that it is only for SYN-RECV/SYNACK
> state. What about the TCP connections that have completed the "fin
> handshake"? The reason I ask is, a default timeout like 15min seems a
> little too high for HTTP and I suspect that there'll be a lot of stale
> entries in the connection table.
May be docs are incorrect but drop_entry also works for
established state to drop connections with low traffic.
15mins should be used for applications that can go in
inactive state while applications that transfer packets constantly
can safely use lower value. If max retransmission period in TCP
is 2 minutes you can select some value that covers desired number
of retransmissions, eg. 3 maximal retransmissions => 6min. Note
that in this period there will be more retransmissions with lower
period. If only NAT mode is used, timeout such as 121 should
work as we monitor the traffic from real server and its
retransmissions.
Regards
--
Julian Anastasov <j...@ssi.bg>
_______________________________________________
Please read the documentation before posting - it's available at:
http://www.linuxvirtualserver.org/
LinuxVirtualServer.org mailing list - lvs-users@LinuxVirtualServer.org
Send requests to lvs-users-requ...@linuxvirtualserver.org
or go to http://lists.graemef.net/mailman/listinfo/lvs-users
