Logging in to bogged down system?
karlp at ourldsfamily.com
karlp at ourldsfamily.com
Fri Mar 31 20:59:29 UTC 2006
On Tue, March 28, 2006 7:30 pm, Rick Stevens said:
> On Tue, 2006-03-28 at 17:17 -0800, Harold Hallikainen wrote:
>> My FC4 system has been running great for months. But today, I headed
>> for Arkansas and the server is in California. Once I got here to AR, I
>> noticed that it was serving web pages real slowly. I logged in using
>> ssh and ran top. I found a TON of httpd processes running, using, at
>> that time, 86% of the processor time. I figured I'd try to reboot the
>> system through ssh, but now I can't even get in to it that way. I
>> connect, but the password is never requested. Instead, I get
>> "ssh_exchange_identification: read: Connection reset by peer
>> ". So, anything I can do from a couple thousand miles away?
>
> Just keep trying or get someone to hard boot it. You should also
> put the following tweaks in your /etc/sysctl.conf file to tweak
> HTTP session handling:
>
> net.ipv4.tcp_fin_timeout = 1
> net.ipv4.tcp_max_syn_backlog = 2048
> net.ipv4.tcp_syn_retries = 3
> net.ipv4.tcp_tw_recycle = 1
> net.ipv4.tcp_tw_reuse = 1
Are these settings 'safe' for RH8.0 and RH9? I guess a better question is,
are these settings used by 8.0 or 9?
Karl
>
> These will force faster recycling of the TCP connections and will help
> block some DDOS attacks.
>
> ----------------------------------------------------------------------
> - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com -
> - VitalStream, Inc. http://www.vitalstream.com -
> - -
> - "If you can't fix it...duct tape it!" - Tim Allen -
> ----------------------------------------------------------------------
>
> _______________________________________________
> Redhat-install-list mailing list
> Redhat-install-list at redhat.com
> https://www.redhat.com/mailman/listinfo/redhat-install-list
> To Unsubscribe Go To ABOVE URL or send a message to:
> redhat-install-list-request at redhat.com
> Subject: unsubscribe
>
--
karl
_/ _/ _/ _/_/_/ ____________ __o
_/ _/ _/ _/ _/ ____________ _-\<._
_/_/ _/ _/_/_/ (_)/ (_)
_/ _/ _/ _/ ......................
_/ _/ arl _/_/_/ _/ earson KarlP at ourldsfamily.com
---
Senior Consulting Sys/DB Analyst
http://consulting.ourldsfamily.com
---
My Thoughts on Terrorism In America right after 9/11/2001:
http://www.ourldsfamily.com/wtc.shtml
---
A right is not what someone gives you; it's what no one can take from you.
-Ramsey Clark
---
More information about the Redhat-install-list
mailing list