|
# /sbin/ipchains -L -Mn | wc -l
6079
The number is increasing steadily.
# /sbin/ipvsadm -L
IP Virtual Server (Version 0.7)
Protocol Local Address:Port Scheduler
-> Remote Address:Port Forward Weight ActiveConn FinConn
TCP XXX.XXX.XXX.XX:80 pcc
-> 192.168.168.42:80 Masq 2000 86 192
-> 192.168.168.43:80 Masq 2000 95 229
-> 192.168.168.44:80 Masq 2000 93 343
-> 192.168.168.41:80 Masq 2000 175 264
The client servers don't open that many outgoing connections to account for
the difference.
The entries look just like this:
TCP 715092:31.23 192.168.168.44 141.15.3.1 80 (80) -> 48142
While this is a clumsy solution, I vote for purging any entries with an expire
time >1000 minutes or so to get rid of those.
(This is using 2.1.12pre7) Hopefully, I assume that this is not going to
impact performance. Since the machines are HA, I _could_ reboot them everytime
it gets to worse, but I would rather not.
Sincerely,
Lars Marowsky-Brée
--
Lars Marowsky-Brée
Network Management
teuto.net Netzdienste GmbH - DPN Verbund-Partner
|
