You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cloudstack.apache.org by "Jayapal Reddy (JIRA)" <ji...@apache.org> on 2014/10/31 06:03:35 UTC

[jira] [Commented] (CLOUDSTACK-6997) conntrack set to a very low value on router

    [ https://issues.apache.org/jira/browse/CLOUDSTACK-6997?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14191361#comment-14191361 ] 

Jayapal Reddy commented on CLOUDSTACK-6997:
-------------------------------------------

Problem:
------------
The default conntrack max set on the router VM is quite low. Due this there are a lot of packet drops.
When where are more number of connections made VR is not able to handle the connections. So the
connections got dropped.

Root Cause Analysis:
--------------------------
Setting the ip_conntrack_max value in  sysctl.conf  is failed.
Conntrack_max is limited to 32'000 but the system would be capable of handling many more connections.

Proposed solution:
-----------------------
Setting ip_conntrack_max from the rc.local. On VR start rc.local run and execute the commands in the file.

Verification steps:
----------------------
1. Bring up the router.
2. Verify the below files in VR for the value 1000000.
 /proc/sys/net/ipv4/netfilter/ip_conntrack_max
/proc/sys/net/netfilter/nf_conntrack_max
 /proc/sys/net/nf_conntrack_max

3. It can also verified by making more number of tcp connections and see VR is
is handling around 65,000+ connections.

> conntrack set to a very low value on router
> -------------------------------------------
>
>                 Key: CLOUDSTACK-6997
>                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-6997
>             Project: CloudStack
>          Issue Type: Bug
>      Security Level: Public(Anyone can view this level - this is the default.) 
>          Components: Network Controller
>    Affects Versions: 4.2.0
>            Reporter: Jayapal Reddy
>            Assignee: Jayapal Reddy
>             Fix For: 4.4.0
>
>
> Set ip_conntrack_max to 1 million
> ip conntrack value which is in sysctl.conf is not applied on VR.
> Debian wheezy sysctl.conf is not got loaded on boot time.
> There is bug in debian https://bugs.launchpad.net/ubuntu/+source/procps/+bug/50093



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)