Just curious, but why not change the contrack limit? On Wednesday, March 28, 2018, <[email protected]> wrote:
> Is there anything similar to a network policy that limits x open > connections per pod? > > During a 100k TPS load test, a subset of pods had errors connecting to a > downstream service and we maxed out the nf_conntrack table (500k) which > affected the rest of the pods on each node that had this issue - which > happened to be 55% of the cluster. > > Besides handling this at the application level, I wanted to protect the > cluster as a whole so that not one deployment can affect the entire cluster > in this manner. > > Thanks for any help. > > -Jonathan > > -- > You received this message because you are subscribed to the Google Groups > "Kubernetes user discussion and Q&A" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To post to this group, send email to [email protected]. > Visit this group at https://groups.google.com/group/kubernetes-users. > For more options, visit https://groups.google.com/d/optout. > -- You received this message because you are subscribed to the Google Groups "Kubernetes user discussion and Q&A" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/kubernetes-users. For more options, visit https://groups.google.com/d/optout.
