[squid-users] Re: squid service & TIME_WAIT

From: Jan-Frode Myklebust <janfrode_at_tanso.net>
Date: Fri, 10 Dec 2010 10:05:12 +0100

On 2010-12-09, Amos Jeffries <squid3_at_treenet.co.nz> wrote:
>
> TIME_WAIT are FD which have been finished with but are in a TCP timeout
> in case there are stray packets still somewhere in the network. Somewhat
> around 5 minutes IIRC. Sockets (FD) cannot be re-used until there is no
> chance of stray packets corrupting the next TCP connection to use them.

F.ex. by putting the following into /etc/sysctl.conf:

        net.ipv4.tcp_fin_timeout = 30

And maybe also extend the ephemeral port range:

        net.ipv4.ip_local_port_range = 16384 61000

and activate by "sysctl -p".

   -jf
Received on Fri Dec 10 2010 - 09:05:39 MST

This archive was generated by hypermail 2.2.0 : Fri Dec 10 2010 - 12:00:01 MST