[Fedora-directory-users] critical problem with fds
basile
bmathieu at siris.sorbonne.fr
Wed Jul 5 13:27:27 UTC 2006
hi
our fds stop without any error message , nothing in the logs
when it is started , it take 11 , 12 % of cpu time
our mailer works with fds so it s a bit critical
there are about 2000 users and 6500 alias
thanks for help
do you think these parameters i havent change can explain this :
NOTICE : The tcp_conn_req_max_q value is currently 128, which will limit the
value of listen backlog which can be configured. It can be raised by adding
to /etc/init.d/inetinit, after any adb command, an entry similar to:
TRANSPORT_NAME[10]=tcp
NDD_NAME[10]=tcp_conn_req_max_q
NDD_VALUE[10]=1024
NOTICE : The tcp_keepalive_interval is set to 7200000 milliseconds
(120 minutes). This may cause temporary server congestion from lost
client connections.
An entry similar to the following should be added to /etc/init.d/inetinit:
TRANSPORT_NAME[10]=tcp
NDD_NAME[10]=tcp_keepalive_interval
NDD_VALUE[10]=600000
NOTICE : The NDD tcp_rexmit_interval_initial is currently set to 3000
milliseconds (3 seconds). This may cause packet loss for clients on
Solaris 2.5.1 due to a bug in that version of Solaris. If the clients
are not using Solaris 2.5.1, no problems should occur.
NOTICE : If the directory service is intended only for LAN or private
high-speed WAN environment, this interval can be reduced by adding an
entry similar to the following to /etc/init.d/inetinit file:
TRANSPORT_NAME[10]=tcp
NDD_NAME[10]=tcp_rexmit_interval_initial
NDD_VALUE[10]=500
NOTICE : The NDD tcp_ip_abort_cinterval is currently set to 180000
milliseconds (180 seconds). This may cause long delays in establishing
outgoing connections if the destination server is down.
NOTICE : If the directory service is intended only for LAN or private
high-speed WAN environment, this interval can be reduced by adding an entry
similar to the following to /etc/init.d/inetinit file:
TRANSPORT_NAME[10]=tcp
NDD_NAME[10]=tcp_ip_abort_cinterval
NDD_VALUE[10]=10000
NOTICE : The NDD tcp_ip_abort_interval is currently set to 180000
milliseconds (180 seconds). This may cause long delays in detecting
connection failure if the destination server is down.
NOTICE : If the directory service is intended only for LAN or private
high-speed WAN environment, this interval can be reduced by adding an entry
similar to the following to /etc/init.d/inetinit:
TRANSPORT_NAME[10]=tcp
NDD_NAME[10]=tcp_ip_abort_interval
NDD_VALUE[10]=60000
NOTICE : The TCP initial sequence number generation is not based on RFC
1948.
If this directory service is intended for external access, add the following
to /etc/init.d/inetinit:
ndd -set /dev/tcp tcp_strong_iss 2
NOTICE : The NDD tcp_smallest_anon_port is currently 32768. This allows a
maximum of 32768 simultaneous connections. More ports can be made
available by
adding an entry similar to
the following to /etc/init.d/inetinit:
TRANSPORT_NAME[10]=tcp
NDD_NAME[10]=tcp_smallest_anon_port
NDD_VALUE[10]=8192
WARNING: tcp_deferred_ack_interval is currently 100 milliseconds. This will
cause the operating system to insert artificial delays in the LDAP
protocol. It should
be reduced during load testing.
An entry similar to the following can be
added to the /etc/init.d/inetinit file:
TRANSPORT_NAME[10]=tcp
NDD_NAME[10]=tcp_deferred_ack_interval
NDD_VALUE[10]=5
WARNING: There are only 256 file descriptors (soft limit) available, which
limit the number of simultaneous connections. Additional file descriptors,
up to 65536 (hard limit), are available by issuing 'ulimit' ('limit' for
tcsh)
command with proper arguments.
ulimit -n 4096
NOTICE : / partition has less space available, 1584MB, than the largest
allowable core file size of 2048MB. A daemon process which dumps core could
cause the root partition to be filled.
ERROR : The above errors MUST be corrected before proceeding.
More information about the Fedora-directory-users
mailing list