Welcome! Log In Create A New Profile

Advanced

slow connection on SSL port (TTFB)

August 07, 2019 06:16AM
Hello
there is a problem:
slow connection to nginx server

telnet server 443
1-8 random sec before TTFB

all possible network stack tunings are applied, similar problems are not observed on other(non nginx) ports

32 vCPU Intel(R) Xeon(R) CPU E5-2630 v4
96 GB RAM
avg CPU load -20%
1 GB network (tested on local internal network)

there are over 1400 virtual hosts with SSL
the problem is observed during busy hours

nginx:
user www-data;
worker_processes 64;
pid /run/nginx.pid;
worker_rlimit_nofile 16384;
events {
use epoll;
worker_connections 16384;
multi_accept on;}
http {
sendfile on;
tcp_nopush on;
tcp_nodelay on;
keepalive_timeout 65;
types_hash_max_size 2048;
server_names_hash_max_size 524280;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2; # Dropping SSLv3, ref: POODLE
ssl_prefer_server_ciphers on;
}
----------------------------------------
there are 5-15K ESTANLISHED connections and over 17K open/TIME_WAIT ports

What can be done to reduce the connection time to the server?
Subject Author Posted

slow connection on SSL port (TTFB)

neomaq August 07, 2019 06:16AM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 74
Record Number of Users: 6 on February 13, 2018
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready