---------- Forwarded message ---------- From: Maarten Bosteels <[EMAIL PROTECTED]> Date: Apr 12, 2006 5:31 PM Subject: Re: testimonial To: Trustin Lee <[EMAIL PROTECTED]>
On 4/12/06, Trustin Lee <[EMAIL PROTECTED]> wrote: > > EPP looks like it can exchange multiple requests and responses per > connection. Did I understand correctly? If so, do you mean that 0.5 > million connections are made and closed within one hour? Could you clarify > this? It will be really impressive! :D That's right, EPP over TCP is meant to support multiple commands per connection. First command should be <login>, last command should be <logout> But to give all registrars a fair chance we decided to close the connection after every <domain:create> command. And we only allowed one simultaneous SSL connection per registrar. Furthermore, to avoid a kind of denial-of-service attack, every registrar was only allowed to send one SYN packet per second (otherwise penalty time) per IP address and only 5 IP addresses were allowed per registrar. From our log-file: 2006-04-07 11:00:02,152 INFO EppHandler - sessions since startup: 100 current: 89 2006-04-07 12:02:16,105 INFO EppHandler - sessions since startup: 500000 current: 1581 2006-04-07 13:00:36,289 INFO EppHandler - sessions since startup: 937500 current: 839 So it actually took 62 minutes to reach 0.5 million SSL connections :-) but like I said, MINA certainly was not the bottleneck. And without the rate-limit on SYN packets we would have had a lot more connections. Kind regards, Maarten
