Welcome! Log In Create A New Profile

Re: Port Exhaustion - SQL

Forum List Message List New Topic Print View

CCS

May 16, 2019 09:48AM

Registered: 5 years ago
Posts: 9

This is a very busy server and tried to push our programming department to move to persistent connections, they feel that it could be a security issue if dealing with sensitive information since that connection could be hijacked. We do not have an issue on the mysql server side with Port Exhaustion, just on the "Frontend webserver". We have made a lot of changes, and are currently managing but I fear that we will reach the 65k limit again. If I could get something to load balance LAN interfaces I could double the port limitation. I see that haproxy has an article on this, I love nginx and use it for other applications but maybe its the wrong product for this senerio. I was thinking there might be a way using proxy_bind.

[ https://www.haproxy.com/blog/haproxy-high-mysql-request-rate-and-tcp-source-port-exhaustion/ | https://www.haproxy.com/blog/haproxy-high-mysql-request-rate-and-tcp-source-port-exhaustion/ ]

Best Regards,
Brandon Mallory
Network & Systems Engineer
MEDENT EMR/EHR
15 Hulbert Street
Auburn, NY 13021
Phone: [ callto:(315)-255-0900 | (315)-255-0900 ]
Fax: [ callto:(315)-255-3539 | (315)-255-3539 ]
Web: [ http://www.medent.com/ | www.medent.com ]

This message and any attachments may contain information that is protected by law as privileged and confidential, and is transmitted for the sole use of the intended recipient(s). If you are not the intended recipient, you are hereby notified that any use, dissemination, copying or retention of this e-mail or the information contained herein is strictly prohibited. If you received this e-mail in error, please immediately notify the sender by e-mail, and permanently delete this e-mail.

From: "Reinis Rozitis" <r@roze.lv>
To: "nginx" <nginx@nginx.org>
Sent: Thursday, May 16, 2019 9:35:18 AM
Subject: RE: Port Exhaustion - SQL

> Yes all of those changes you have mentioned have been made.

Well imo there is nothing else besides to even more decrease the FIN timeout (in a LAN that shouldn't be an issue (no slow clients)) so the lingering sockets are closed faster.

Also instead of adding the network adapter(s) on the webserver you should add the interfaces on the mysql server and then either via loadbalancer or on application level use a round robin fashion (as binding to a specific local interface is harder than just connect to a different remote ip).

Other than that depending on the application you might want to consider using persistent connections to MySQL or use some kind of mysql proxy between which could pool the connections to the mysql server.

rr

_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx

Reply Quote

RSS

Subject	Author	Posted
Port Exhaustion - SQL	CCS	May 16, 2019 08:53AM
RE: Port Exhaustion - SQL	Reinis Rozitis	May 16, 2019 09:10AM
Re: Port Exhaustion - SQL	CCS	May 16, 2019 09:12AM
RE: Port Exhaustion - SQL	Reinis Rozitis	May 16, 2019 09:36AM
Re: Port Exhaustion - SQL	CCS	May 16, 2019 09:48AM
Re: Port Exhaustion - SQL	Maxim Konovalov	May 16, 2019 09:52AM
Re: Port Exhaustion - SQL	CCS	May 16, 2019 10:12AM
RE: Port Exhaustion - SQL	Reinis Rozitis	May 16, 2019 10:40AM
Re: Port Exhaustion - SQL	CCS	May 16, 2019 11:14AM
Re: Port Exhaustion - SQL	Maxim Konovalov	May 16, 2019 10:18AM
RE: Port Exhaustion - SQL	Reinis Rozitis	May 16, 2019 10:16AM

Sorry, only registered users may post in this forum.

Click here to login

Online Users

itpp2012

Guests: 261

Record Number of Users: 8 on April 13, 2023

Record Number of Guests: 421 on December 02, 2018