Uploaded bym0use
180 views

5 issues

This document discusses several common problems encountered with TCP sockets, connections, and memory usage. Solutions provided include increasing limits on socket backlogs, connections, memory allocation, and optimizing connection tracking and caching.

Embed presentation

Download to read offline
TCP socket backlog 5 ïðîáëåì ïðè Àëåêñàíäð Êîëåñåíü Î÷åðåäü íà ñîêåòå 1K -> 20K rpm wargaming.net Ïàäàåò êëàñòåð - âñå èäóò íà ñàéò: Èíâàëèäàöèÿ êýøà - âñå æäóò: 20K -> 1K rpm Ðåøåíèå: net.core.somaxconn = 32768 net.core.netdev_max_backlog = 32768 net.ipv4.tcp_max_syn_backlog = 32768 ÍÅ UNIX ñîêåò (ECONNREFUSED) 502 Bad Gateway
conntrack 5 ïðîáëåì ïðè Àëåêñàíäð Êîëåñåíü wargaming.net net.ipv4.netfilter.ip_conntrack_max = 294912 net.ipv4.netfilter.ip_conntrack_count = 294118 Ïåðåïîëíåíèå: [8727241.821130] ip_conntrack: table full, dropping packet. [8727243.790372] ip_conntrack: table full, dropping packet. [8727248.908501] ip_conntrack: table full, dropping packet. [8727253.859720] ip_conntrack: table full, dropping packet. [8727258.846404] ip_conntrack: table full, dropping packet. [8727264.276727] ip_conntrack: table full, dropping packet. Áîëüøîé conntrack (over 300K): 97.5%si Ðåøåíèå: dport 80 -> NOTRACK
TIME_WAIT 5 ïðîáëåì ïðè Àëåêñàíäð Êîëåñåíü frontend äëÿ îáùåíèÿ ñ âíåøíèì ìèðîì wargaming.net áûñòðûé backend (1..10ms) frontend <-> backend HTTP/1.0 (conn per req) $ netstat -napt | awk '{print $6}' | sort | uniq -c ... 63564 TIME_WAIT Íåõâàòêà èñõîäÿùèõ ïîðòîâ! Ðåøåíèå: net.ipv4.ip_local_port_range = 2000 61000 net.ipv4.tcp_max_tw_buckets = 131072 net.ipv4.tcp_tw_recycle = 0 net.ipv4.tcp_tw_reuse = 1
Out Of TCP Mem 5 ïðîáëåì ïðè Àëåêñàíäð Êîëåñåíü 3494-[9404385.020387] TCP: too many of orphaned sockets wargaming.net 3496:[9404390.463850] Out of socket memory Äèàãíîñòèêà: $ cat /proc/net/sockstat sockets: used 7385 TCP: inuse 5236 orphan 98 tw 2696 alloc 7126 mem 25421 UDP: inuse 10 mem 0 RAW: inuse 0 FRAG: inuse 0 memory 0 $ /sbin/sysctl -a | grep tcp_mem net.ipv4.tcp_mem = 196608 262144 393216 $ /sbin/sysctl -a | grep orphans net.ipv4.tcp_max_orphans = 131072
memcached 5 ïðîáëåì ïðè Àëåêñàíäð Êîëåñåíü wargaming.net ïëîõî ìàñøòàáèðóåòñÿ thread-àìè (-t 64 çëî) 8192 pthread mutex íà âñå êëþ÷è, -t 6 - OK! (íå áîëüøå) Nthreads == Ncpu Ìàñøòàáèðîâàòü ïðîöåññàìè! Êîíñèñòåíòíîå êîëüöî êåøèðîâàíèÿ - íåñêîëüêî èíñòàíñîâ
nscd (bonus) 5 ïðîáëåì ïðè Àëåêñàíäð Êîëåñåíü Êýøèðîâàíèå îòâåòîâ DNS wargaming.net nscd must have!

More Related Content

PDF
PFIセミナー資料 H27.10.22
byYuya Takei
 
TXT
Cpu utilization
byRahimullah Hashimi
 
PDF
PENYELESAIAN SOAL UKK/UPK TAHUN 2018 Paket 3 oleh Walid Umar
byWalid Umar
 
PDF
Varnish Cache and Django (Falcon, Flask etc)
byДанил Иванов
 
PDF
XS Boston 2008 Debugging Xen
byThe Linux Foundation
 
PDF
A little systemtap
byyang bingwu
 
PDF
Fail2ban - the system security for green hand -on linux os
bySamina Fu (Shan Jung Fu)
 
PDF
strace for Perl Mongers
byNaosuke Yokoe
 
PFIセミナー資料 H27.10.22
byYuya Takei
 
Cpu utilization
byRahimullah Hashimi
 
PENYELESAIAN SOAL UKK/UPK TAHUN 2018 Paket 3 oleh Walid Umar
byWalid Umar
 
Varnish Cache and Django (Falcon, Flask etc)
byДанил Иванов
 
XS Boston 2008 Debugging Xen
byThe Linux Foundation
 
A little systemtap
byyang bingwu
 
Fail2ban - the system security for green hand -on linux os
bySamina Fu (Shan Jung Fu)
 
strace for Perl Mongers
byNaosuke Yokoe
 

What's hot

PPT
Installation of application server 10g in red hat 4
byuzzzle
 
PPTX
MongoDB Replication (Dwight Merriman)
byMongoSF
 
ODP
Triangle OpenStack meetup 09 2013
byDan Radez
 
PDF
mod_perl 2.0 For Speed Freaks!
byPhilippe M. Chiasson
 
PDF
Javantura v2 - Replication with MongoDB - what could go wrong... - Philipp Krenn
byHUJAK - Hrvatska udruga Java korisnika / Croatian Java User Association
 
TXT
Log
byMariiana Guerrero
 
PDF
wordpress with nginx on virtualization, jail
byJongseok Choi
 
PDF
Практический опыт профайлинга и оптимизации производительности Ruby-приложений
byOlga Lavrentieva
 
DOCX
Uable to do ssh from the RedHat Linux machine to Netapp filer 7 mode storage ...
bySaroj Sahu
 
DOC
X64服务器 lnmp服务器部署标准 new
byYiwei Ma
 
PPTX
Bsides final
byCollyn Hartley
 
PDF
XS Japan 2008 Isolation Japanese
byThe Linux Foundation
 
PDF
Ruby Postgres
byAkio Ishida
 
PPTX
agri inventory - nouka data collector / yaoya data convertor
byToshiaki Baba
 
PPT
Linux Server Start
byGavin Quan
 
PDF
TechTalkThursday 29.06.2017: Wie verhält sich DDoS in der Realität?
bynine
 
PDF
Debugging Ruby
byAman Gupta
 
PDF
Безопасность интернет-приложений осень 2013 лекция 7
byTechnopark
 
PDF
Osol Pgsql
byEmanuel Calvo
 
PDF
Debugging Ruby Systems
byEngine Yard
 
Installation of application server 10g in red hat 4
byuzzzle
 
MongoDB Replication (Dwight Merriman)
byMongoSF
 
Triangle OpenStack meetup 09 2013
byDan Radez
 
mod_perl 2.0 For Speed Freaks!
byPhilippe M. Chiasson
 
Javantura v2 - Replication with MongoDB - what could go wrong... - Philipp Krenn
byHUJAK - Hrvatska udruga Java korisnika / Croatian Java User Association
 
Log
byMariiana Guerrero
 
wordpress with nginx on virtualization, jail
byJongseok Choi
 
Практический опыт профайлинга и оптимизации производительности Ruby-приложений
byOlga Lavrentieva
 
Uable to do ssh from the RedHat Linux machine to Netapp filer 7 mode storage ...
bySaroj Sahu
 
X64服务器 lnmp服务器部署标准 new
byYiwei Ma
 
Bsides final
byCollyn Hartley
 
XS Japan 2008 Isolation Japanese
byThe Linux Foundation
 
Ruby Postgres
byAkio Ishida
 
agri inventory - nouka data collector / yaoya data convertor
byToshiaki Baba
 
Linux Server Start
byGavin Quan
 
TechTalkThursday 29.06.2017: Wie verhält sich DDoS in der Realität?
bynine
 
Debugging Ruby
byAman Gupta
 
Безопасность интернет-приложений осень 2013 лекция 7
byTechnopark
 
Osol Pgsql
byEmanuel Calvo
 
Debugging Ruby Systems
byEngine Yard
 

Viewers also liked

PDF
Interpol bringing the united states to justice (lithuanian)
byVogelDenise
 
PDF
052215 - FAX TO DELNER THOMAS & BENNIE THOMPSON (Dutch)
byVogelDenise
 
PDF
BARACK OBAMA- UNDERSTANDING WILLIE LYNCH (Korean)
byVogelDenise
 
PDF
032515 - FAX CONFIRMATION TO BENNIE THOMPSON - EEOC WILMA JONES SCOTT - EEOC ...
byVogelDenise
 
PDF
BARACK OBAMA- UNDERSTANDING WILLIE LYNCH (Russian)
byVogelDenise
 
PPT
Cts
byCyriac Jose
 
PPTX
Keramahtamahan
byRicky Desersi
 
PDF
DMA Behavioural marketing -marketing with intent -antonia edmunds - presentation
byDMA Email Marketing Council
 
PDF
Nuremberg crimes against humanity-peace (finnish)
byVogelDenise
 
PDF
Idealware - Technology Resources for Nonprofits 012413
byCommunity IT Innovators
 
PDF
Nuremberg crimes against humanity-peace (gujarati)
byVogelDenise
 
DOCX
Sexualabuseagenciessummary
bykajani1991
 
PDF
Interpol bringing the united states to justice (danish)
byVogelDenise
 
PDF
050113 fax to judy clarke (boston marathon bombing) - belarusian
byVogelDenise
 
PDF
09/03/14 - LACK OF JURISDICTION - RESPONSE TO 08/12/14 JUDGE RUSSELL MFSOE ENTRY
byVogelDenise
 
PDF
Nuremberg principle dutch
byVogelDenise
 
PDF
Nuremberg principle lithuanian
byVogelDenise
 
PDF
Interpol bringing the united states to justice (persian)
byVogelDenise
 
PDF
Interpol bringing the united states to justice (chinese – simplified)
byVogelDenise
 
PDF
09/03/14 - LACK OF JURISDICTION - RESPONSE TO 08/12/14 JUDGE RUSSELL ENTRY
byVogelDenise
 
Interpol bringing the united states to justice (lithuanian)
byVogelDenise
 
052215 - FAX TO DELNER THOMAS & BENNIE THOMPSON (Dutch)
byVogelDenise
 
BARACK OBAMA- UNDERSTANDING WILLIE LYNCH (Korean)
byVogelDenise
 
032515 - FAX CONFIRMATION TO BENNIE THOMPSON - EEOC WILMA JONES SCOTT - EEOC ...
byVogelDenise
 
BARACK OBAMA- UNDERSTANDING WILLIE LYNCH (Russian)
byVogelDenise
 
Cts
byCyriac Jose
 
Keramahtamahan
byRicky Desersi
 
DMA Behavioural marketing -marketing with intent -antonia edmunds - presentation
byDMA Email Marketing Council
 
Nuremberg crimes against humanity-peace (finnish)
byVogelDenise
 
Idealware - Technology Resources for Nonprofits 012413
byCommunity IT Innovators
 
Nuremberg crimes against humanity-peace (gujarati)
byVogelDenise
 
Sexualabuseagenciessummary
bykajani1991
 
Interpol bringing the united states to justice (danish)
byVogelDenise
 
050113 fax to judy clarke (boston marathon bombing) - belarusian
byVogelDenise
 
09/03/14 - LACK OF JURISDICTION - RESPONSE TO 08/12/14 JUDGE RUSSELL MFSOE ENTRY
byVogelDenise
 
Nuremberg principle dutch
byVogelDenise
 
Nuremberg principle lithuanian
byVogelDenise
 
Interpol bringing the united states to justice (persian)
byVogelDenise
 
Interpol bringing the united states to justice (chinese – simplified)
byVogelDenise
 
09/03/14 - LACK OF JURISDICTION - RESPONSE TO 08/12/14 JUDGE RUSSELL ENTRY
byVogelDenise
 

Recently uploaded

PDF
JR : Quality Random Data from the Command line
byGiovanni Marigi
 
PPTX
Full course that Prymehat uploads for you version 2
byOhenebaManu1
 
PDF
Intro to CrafterQ - AI Agent Platform for the Enterprise.pdf
byCrafterQ
 
PDF
Best-Travel-Portal-Development-Solutions-for-Online-Growth
bykashishnagarrajput
 
PDF
DataLiva-LivaGRC- Business Software for Governance, Risk, and Compliance
byMustafa Kuğu
 
PDF
SAP WalkMe Overview.pdf SAP WalkMe Overview.pdf
byMurniatiSimbolon2
 
PDF
A "Kill Switch" (Emergency Off Switch) for AI?
byScott M. Graffius
 
PPTX
Lecture 05. API Security for DevSecOps Eng.pptx
byvinocol222
 
PPTX
JAVA Programming Lecture 1 C 4 Yourself.pptx
byyvsbglfaeahuyldzhq
 
PPTX
KTU-PEMET413 -MODULE 2-POLYMER MATRIX COMPOSITES - LECTURE 1.pptx
byVINAY B
 
PPTX
Building Real-Time Voice AI — Udaiappa Ramachandran
byUdaiappa Ramachandran
 
PPTX
UNIT 1- Introduction to Basic of Computer Fundamentals
bypawarbhaktiit
 
PDF
Using Change Data Capture (CDC) to Ingest Data into Apache Kafka
byGiovanni Marigi
 
PDF
Chapter 2 Computer Threat .pdf
byGetnet Tigabie Askale -(GM)
 
PDF
Higgsfield AI: The New Way to Create Cinematic Video
bytechnologyupside
 
PDF
Generating Structured Outputs from Unstructured Content Using LLMs
byEnterprise Knowledge
 
PPTX
DVCON24-IBM ai/ml driven hardware verification
byArun Joseph
 
PPTX
Flutter & Firebase Session Slides - GDG VESIT
bygdgcodecellcmpn
 
PPT
Waste water treatment plant operation and maintenance
byDuggineniRamakrishna
 
PPTX
Lecture 04. about Black heads and Hackerss.pptx
byvinocol222
 
JR : Quality Random Data from the Command line
byGiovanni Marigi
 
Full course that Prymehat uploads for you version 2
byOhenebaManu1
 
Intro to CrafterQ - AI Agent Platform for the Enterprise.pdf
byCrafterQ
 
Best-Travel-Portal-Development-Solutions-for-Online-Growth
bykashishnagarrajput
 
DataLiva-LivaGRC- Business Software for Governance, Risk, and Compliance
byMustafa Kuğu
 
SAP WalkMe Overview.pdf SAP WalkMe Overview.pdf
byMurniatiSimbolon2
 
A "Kill Switch" (Emergency Off Switch) for AI?
byScott M. Graffius
 
Lecture 05. API Security for DevSecOps Eng.pptx
byvinocol222
 
JAVA Programming Lecture 1 C 4 Yourself.pptx
byyvsbglfaeahuyldzhq
 
KTU-PEMET413 -MODULE 2-POLYMER MATRIX COMPOSITES - LECTURE 1.pptx
byVINAY B
 
Building Real-Time Voice AI — Udaiappa Ramachandran
byUdaiappa Ramachandran
 
UNIT 1- Introduction to Basic of Computer Fundamentals
bypawarbhaktiit
 
Using Change Data Capture (CDC) to Ingest Data into Apache Kafka
byGiovanni Marigi
 
Chapter 2 Computer Threat .pdf
byGetnet Tigabie Askale -(GM)
 
Higgsfield AI: The New Way to Create Cinematic Video
bytechnologyupside
 
Generating Structured Outputs from Unstructured Content Using LLMs
byEnterprise Knowledge
 
DVCON24-IBM ai/ml driven hardware verification
byArun Joseph
 
Flutter & Firebase Session Slides - GDG VESIT
bygdgcodecellcmpn
 
Waste water treatment plant operation and maintenance
byDuggineniRamakrishna
 
Lecture 04. about Black heads and Hackerss.pptx
byvinocol222
 

5 issues

  • 1.
    TCP socket backlog 5 ïðîáëåì ïðè Àëåêñàíäð Êîëåñåíü Î÷åðåäü íà ñîêåòå 1K -> 20K rpm wargaming.net Ïàäàåò êëàñòåð - âñå èäóò íà ñàéò: Èíâàëèäàöèÿ êýøà - âñå æäóò: 20K -> 1K rpm Ðåøåíèå: net.core.somaxconn = 32768 net.core.netdev_max_backlog = 32768 net.ipv4.tcp_max_syn_backlog = 32768 ÍÅ UNIX ñîêåò (ECONNREFUSED) 502 Bad Gateway
  • 2.
    conntrack 5 ïðîáëåì ïðè Àëåêñàíäð Êîëåñåíü wargaming.net net.ipv4.netfilter.ip_conntrack_max = 294912 net.ipv4.netfilter.ip_conntrack_count = 294118 Ïåðåïîëíåíèå: [8727241.821130] ip_conntrack: table full, dropping packet. [8727243.790372] ip_conntrack: table full, dropping packet. [8727248.908501] ip_conntrack: table full, dropping packet. [8727253.859720] ip_conntrack: table full, dropping packet. [8727258.846404] ip_conntrack: table full, dropping packet. [8727264.276727] ip_conntrack: table full, dropping packet. Áîëüøîé conntrack (over 300K): 97.5%si Ðåøåíèå: dport 80 -> NOTRACK
  • 3.
    TIME_WAIT 5 ïðîáëåì ïðè Àëåêñàíäð Êîëåñåíü frontend äëÿ îáùåíèÿ ñ âíåøíèì ìèðîì wargaming.net áûñòðûé backend (1..10ms) frontend <-> backend HTTP/1.0 (conn per req) $ netstat -napt | awk '{print $6}' | sort | uniq -c ... 63564 TIME_WAIT Íåõâàòêà èñõîäÿùèõ ïîðòîâ! Ðåøåíèå: net.ipv4.ip_local_port_range = 2000 61000 net.ipv4.tcp_max_tw_buckets = 131072 net.ipv4.tcp_tw_recycle = 0 net.ipv4.tcp_tw_reuse = 1
  • 4.
    Out Of TCPMem 5 ïðîáëåì ïðè Àëåêñàíäð Êîëåñåíü 3494-[9404385.020387] TCP: too many of orphaned sockets wargaming.net 3496:[9404390.463850] Out of socket memory Äèàãíîñòèêà: $ cat /proc/net/sockstat sockets: used 7385 TCP: inuse 5236 orphan 98 tw 2696 alloc 7126 mem 25421 UDP: inuse 10 mem 0 RAW: inuse 0 FRAG: inuse 0 memory 0 $ /sbin/sysctl -a | grep tcp_mem net.ipv4.tcp_mem = 196608 262144 393216 $ /sbin/sysctl -a | grep orphans net.ipv4.tcp_max_orphans = 131072
  • 5.
    memcached 5 ïðîáëåì ïðè Àëåêñàíäð Êîëåñåíü wargaming.net ïëîõî ìàñøòàáèðóåòñÿ thread-àìè (-t 64 çëî) 8192 pthread mutex íà âñå êëþ÷è, -t 6 - OK! (íå áîëüøå) Nthreads == Ncpu Ìàñøòàáèðîâàòü ïðîöåññàìè! Êîíñèñòåíòíîå êîëüöî êåøèðîâàíèÿ - íåñêîëüêî èíñòàíñîâ
  • 6.
    nscd (bonus) 5ïðîáëåì ïðè Àëåêñàíäð Êîëåñåíü Êýøèðîâàíèå îòâåòîâ DNS wargaming.net nscd must have!