HAproxy Server large number of connections

Wed, 10 Jul 2013 23:08:35 -0700 

Hi, all!

Our HAproxy just has about 200Mbps traffic. But has a very high connection 
there.
And we configure one backend server for http traffic and direct server for 
non-http connection.Here is the configure

###############
global
        pidfile /var/run/haproxy.pid
        maxconn 200000
        maxpipes 50000
        daemon
        stats socket /tmp/haproxy.sock
        nbproc 4
        spread-checks 5
        tune.rcvbuf.client 16384
        tune.rcvbuf.server 16384
        tune.sndbuf.client 32768
        tune.sndbuf.server 16384

defaults
 #TCP SECTION
        maxconn 200000
        backlog 32768
        timeout connect 5s
        timeout client 60s
        timeout server 60s
        timeout queue 60s
        timeout check 10s
        timeout http-request 15s
        timeout http-keep-alive 1s
        timeout tunnel 3600s
        option tcpka


#HTTP SECTION
        hash-type consistent
        option accept-invalid-http-request
        option accept-invalid-http-response
        option redispatch
        option http-server-close
        option http-pretend-keepalive
        retries 2
        option httplog
        no option checkcache

#SYSTEM SECTION
        option dontlog-normal
        option dontlognull
        option log-separate-errors
        

######### frontend ##############
frontend tcp-in
        bind :2222 
        mode tcp
        log global
        option tcplog

        tcp-request inspect-delay 30s
        tcp-request content accept if HTTP

        use_backend NginxCluster if HTTP 
        default_backend Direct

backend NginxCluster
        mode http
        option abortonclose
        balance uri whole
        log global
        source 0.0.0.0
        server ngx1 192.168.10.1:80 weight 20 check inter 5s maxconn 10000
        server ngx2 192.168.10.2:80 weight 20 check inter 5s maxconn 10000
        server ngx3 192.168.10.3:80 weight 20 check inter 5s maxconn 10000

backend Direct
        mode tcp
        log global
        option tcplog
        no option httpclose
        no option http-server-close
        no option accept-invalid-http-response
        no option http-pretend-keepalive
        option transparent


And the connection status here.

FIN_WAIT2 17356
CLOSING 27
LISTEN 12
SYN_RECV 60
CLOSE_WAIT 16685
TIME_WAIT 9280
ESTABLISHED 39134
LAST_ACK 526
SYN_SENT 23
FIN_WAIT1 927

We found out that the client to the haproxy connection has many fin_wait2
# netstat -na4|grep FIN_WAIT2|grep 192.168.137.|wc -l
17160
and connection to the default Direct has many close_wait
# netstat -na4|grep CLOSE_WAIT|grep 192.168.175.1|wc -l
16181
and others connection are normal.

Is there any turning argument for solve this problem?


Regards
Jinge

Reply via email to