|
Hendrik Thiel wrote:
>
> Hi all
>
> we are using a lvs in NAT Mode and everything works fine ...
> Probably, the only Problem seems to be the huge number of (idle)
> Connection Entries.
>
> ipvsadm shows a lot of inActConn (more than 10000 entries per
> Realserver) entries.
> ipchains -M -L -n shows that these connections last 2 minutes.
FIN timeout is 2 mins by default.
> Is it possible to reduce the time to keep the Masquerading Table
> small? e.g. 10 seconds ...
yes
http://www.linuxvirtualserver.org/Joseph.Mack/HOWTO/LVS-HOWTO_1.0-10.html#ss10.9
unless this is causing you problems, you don't need to change your FIN timeout.
Joe
--
Joseph Mack PhD, Senior Systems Engineer, Lockheed Martin
contractor to the National Environmental Supercomputer Center,
mailto:mack.joseph@xxxxxxx ph# 919-541-0007, RTP, NC, USA
|
