No subject

tcp clients: 0/1000

Almost all (~99%) of the TCP connections in the above netstat are at a
SYN_RECV state.  My guess would be customer servers that have bad firewall
rules, but in any case, it's really not relevant to this particular
problem because nothing has changed except for the upgrade from 9.4.2 to
9.4.2-P1.  I didn't change the named.conf or anything, and as you can see,
tcp-clients is set to 1000.

Did something change in the source code that would cause this?  I'm
thinking a listen() call with backlog set to 100 that wasn't setup that
way previously?  Something interesting to me is that the ARM specifies the
default for tcp-clients to be 100, but maybe that is a coincidence.

FWIW, SOMAXCONN is set to 128 on my servers.  Prior to this patch, I was
using a Debian packaged version of 9.4.2, so maybe they had it set higher?
 I looked all through the source and changes made by Debian to 9.4.2 and
couldn't find anything to indicate this is the case.

I'm open for suggestions!  This a Debian Etch box running kernel 2.6.18 on
an x86_64 architecture.  Thanks.

-- Jason


Confidentiality Notice: This e-mail message (including any attached or
embedded documents) is intended for the exclusive and confidential use of the
individual or entity to which this message is addressed, and unless otherwise
expressly indicated, is confidential and privileged information of Rackspace.
Any dissemination, distribution or copying of the enclosed material is prohibited.
If you receive this transmission in error, please notify us immediately by e-mail
at abuse at rackspace.com, and delete the original message.
Your cooperation is appreciated.