Home > Developer > Linux

Nf_conntrack: table full, dropping packet solution

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

Nf_conntrack: table full, dropping packet solution

After the magent agent is added, the memcached test finds that if the concurrency is high and the number of connections to the database remains high, it is reasonable to say that as the key is saved to the cache, the number of connections should be gradually reduced, however, it is normal when the concurrency is low.

When memcached is started, the-vvv parameter is added to print the internal status information and view the log:

29: going from conn_parse_cmd to conn_write
29: going from conn_write to conn_new_cmd
29: going from conn_new_cmd to conn_waiting
29: going from conn_waiting to conn_read
28: going from conn_new_cmd to conn_waiting
28: going from conn_waiting to conn_read
28: going from conn_read to conn_closing

From the log, we can see that memcached closes the connection without accepting the command.

Then, the following information is displayed in the/var/log/messages log:

Kernel: nf_conntrack: table full, dropping packet

This is the error message of iptables. "The connection trace table is full and packet loss starts." Then, you can change the memcached connection to a short connection on the website. Because iptables records the tracking information of each connection, too frequently closed connections lead to full connection tracking tables and packet loss.

Solution:

First, change the connection method of memcached to persistent link, and then modify nf_conntrack. The following methods are used:

1. Disable Firewall

Chkconfig iptables off
Chkconfig ip6tables off
Service iptables stop
Service ip6tables stop

Note: Do not use iptables-L-vnx to view the status when the firewall is disabled! This causes the firewall to be started and the rule is empty. Although there will be no interception effect, all connection statuses will be recorded, which wastes resources and affects performance and may cause firewall packet loss!

2. Increase the size of the iptables tracking table and adjust the corresponding system parameters.

3. Use a bare table with no trace flag added

4. Delete the connection tracking module

For details about the modification process, refer to here.

This article permanently updates the link address:

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
table is full mysql cryptocurrencies dropping ethereum dropping voip phone dropping calls cafm solution zagg solution solution captcha

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More