From owner-freebsd-net@FreeBSD.ORG  Tue Jun 12 21:20:03 2007
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
X-Original-To: freebsd-net@freebsd.org
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id D0BA416A400;
	Tue, 12 Jun 2007 21:20:03 +0000 (UTC)
	(envelope-from jmg@hydrogen.funkthat.com)
Received: from hydrogen.funkthat.com (gate.funkthat.com [69.17.45.168])
	by mx1.freebsd.org (Postfix) with ESMTP id A18CC13C469;
	Tue, 12 Jun 2007 21:20:03 +0000 (UTC)
	(envelope-from jmg@hydrogen.funkthat.com)
Received: from hydrogen.funkthat.com (1fppi54w6txcf5ed@localhost.funkthat.com
	[127.0.0.1])
	by hydrogen.funkthat.com (8.13.6/8.13.3) with ESMTP id l5CKjFO1035315; 
	Tue, 12 Jun 2007 13:45:15 -0700 (PDT)
	(envelope-from jmg@hydrogen.funkthat.com)
Received: (from jmg@localhost)
	by hydrogen.funkthat.com (8.13.6/8.13.3/Submit) id l5CKjEXB035314;
	Tue, 12 Jun 2007 13:45:14 -0700 (PDT) (envelope-from jmg)
Date: Tue, 12 Jun 2007 13:45:14 -0700
From: John-Mark Gurney <gurney_j@resnet.uoregon.edu>
To: Bill Moran <wmoran@collaborativefusion.com>
Message-ID: <20070612204514.GS4602@funkthat.com>
Mail-Followup-To: Bill Moran <wmoran@collaborativefusion.com>,
	Andre Oppermann <andre@freebsd.org>, freebsd-net@freebsd.org
References: <20070612101949.646dcaa5.wmoran@collaborativefusion.com>
	<466EBE3E.3050105@freebsd.org>
	<20070612131320.c120cd00.wmoran@collaborativefusion.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20070612131320.c120cd00.wmoran@collaborativefusion.com>
User-Agent: Mutt/1.4.2.1i
X-Operating-System: FreeBSD 5.4-RELEASE-p6 i386
X-Files: The truth is out there
X-URL: http://resnet.uoregon.edu/~gurney_j/
X-Resume: http://resnet.uoregon.edu/~gurney_j/resume.html
Cc: freebsd-net@freebsd.org, Andre Oppermann <andre@freebsd.org>
Subject: Re: Weird "ignoring syn" problem
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: John-Mark Gurney <gurney_j@resnet.uoregon.edu>
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Jun 2007 21:20:03 -0000

Bill Moran wrote this message on Tue, Jun 12, 2007 at 13:13 -0400:
> >   b) you may run out of socket on the client side and reuse them
> >      too fast.  Try to lower net.inet.ip.portrange.first to 30,000
> >      or so.
> 
> I find that unlikely.  The problem usually occurs reliably after less
> than 200 connections, and frequently after less than 50.

I've found that durning load testing, that I regularly run into the
icmp limit limiting the rst's sent to completely close connections to
web servers...  200 is the default limit per second...   Increasing
net.inet.icmp.icmplim would change this..  Note that even though it says
icmp, it limits TCP RST's...

-- 
  John-Mark Gurney				Voice: +1 415 225 5579

     "All that I will do, has been done, All that I have, has not."