<p dir="ltr">Have you ruled out AWS limits? Putting varnish aside for a minute, can you handle 5k/sec TCP conns with something like nginx +static files.?</p>
<div class="gmail_quote">On 30/04/2014 4:35 am, "Jason Price" <<a href="mailto:japrice@gmail.com">japrice@gmail.com</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
(And Jorge: iptables isn't in play at all.  lsmod | grep iptables<br>
shows nothing.)<br>
<br>
On Mon, Apr 28, 2014 at 4:37 PM,  <<a href="mailto:lnsano@bol.com.br">lnsano@bol.com.br</a>> wrote:<br>
> Could you print the output for?<br>
> $ ss -s<br>
> $ sudo sysctl -a|egrep<br>
> "ip_local_port_range|tcp_max_tw_buckets|backlog|somaxconn"<br>
<br>
[root@XXXXXXXXX ~]# ss -s<br>
Total: 853 (kernel 6127)<br>
TCP:   695 (estab 292, closed 94, orphaned 0, synrecv 0, timewait 94/0), ports 0<br>
<br>
Transport Total     IP        IPv6<br>
*         6127      -         -<br>
RAW       0         0         0<br>
UDP       8         5         3<br>
TCP       601       598       3<br>
INET      609       603       6<br>
FRAG      0         0         0<br>
<br>
[root@XXXXXXXXX ~]# sysctl -a|egrep<br>
"ip_local_port_range|tcp_max_tw_buckets|backlog|somaxconn"<br>
net.core.netdev_max_backlog = 5000<br>
net.core.somaxconn = 512<br>
net.ipv4.ip_local_port_range = 32768    61000<br>
net.ipv4.tcp_max_syn_backlog = 4096<br>
net.ipv4.tcp_max_tw_buckets = <a href="tel:131072" value="+61131072">131072</a><br>
<br>
This system isn't under super heavy load currently (about 400 req/sec)<br>
but it has been at max load.<br>
<br>
_______________________________________________<br>
varnish-misc mailing list<br>
<a href="mailto:varnish-misc@varnish-cache.org">varnish-misc@varnish-cache.org</a><br>
<a href="https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc" target="_blank">https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc</a><br>
</blockquote></div>