[prev in list] [next in list] [prev in thread] [next in thread]
List: foundry-nsp
Subject: [f-nsp] DSR configuration on WSM7 failing after about 50-60k
From: "Flint Barber" <FBarber () nirvanix ! com>
Date: 2010-04-19 18:44:44
Message-ID: A39EEDFCDE97D94D8DCD397D0DBCC75D07D8C9EA () corpex01 ! nirvanix ! com
[Download RAW message or body]
--===============2022174946==
Content-class: urn:content-classes:message
Content-Type: multipart/alternative;
boundary="----_=_NextPart_001_01CADFF0.6125DF70"
This is a multi-part message in MIME format.
I am having an issue with WSM7 using TW 11.0.00dTG2. I can make about
50-60k requests in the space of about a minute before I get timeouts and
connection failures. This is from a single host to a DSR vip with 3 IIS
hosts on the backside. If I run the same query against an individual
server it takes a bit longer, but I don't get any failures. The
configuration is non-sticky and the queries are only about 15-20k each
using apachebench on a single url. When the serveriron starts reporting
failed connections or a query times out, I can still get to the real
servers normally. Any ideas on why this may be happening? Is there a
default setting within 11.0.00dTG2 that would need to be reset? I tried
overriding by adding client TRL and other settings for per user and for
per server, but none actually seemed to help, so I reverted.. Here is
the config, can anyone spot something wrong?? One note, the application
actually returns a 403 when asking for "/", so I want to make sure those
pass.. I did disable l7 after I added the 200 and 403 healthcheck
responses, so those are remnants are ignored..
Thanks!!
-Flint
SLB-SSH@SLB-HOMER-A#show run
!Building configuration...
!Current configuration : 2692 bytes
!
ver 11.0.00dTG2
!
module 1 bi-0-port-wsm7-management-module
module 2 bi-jc-8-port-gig-module
!
server backup ethe 2/1 0012.f2aa.4311 vlan-id 500
server backup-preference 5
config-sync sender ethernet 2/1 mac 0012.f2aa.6e00 vlan-id 500
!
!
server port 80
session-sync
tcp
tcp 4
server source-ip 10.1.2.170 255.255.255.0 0.0.0.0
!
server monitor
!
context default
!
server real STAGE-N1-TS01 10.1.2.165
port http
port http max-conn 1000000
port http url "HEAD /"
port http l4-check-only
port http status-code 200 200 403 403
!
server real STAGE-N1-TS02 10.1.2.166
port http
port http max-conn 1000000
port http url "HEAD /"
port http l4-check-only
port http status-code 200 200 403 403
!
server real STAGE-N1-TS03 10.1.2.167
port http
port http max-conn 1000000
port http url "HEAD /"
port http l4-check-only
port http status-code 200 200 403 403
!
!
server virtual STAGE-TEST-VIP 10.1.2.162
predictor round-robin
port default dsr
port http
port http tcp-only
port http dsr
bind default STAGE-N1-TS01 default STAGE-N1-TS02 default STAGE-N1-TS03
default
bind http STAGE-N1-TS01 http STAGE-N1-TS02 http STAGE-N1-TS03 http
!
vlan 1 name DEFAULT-VLAN by port
no spanning-tree
!
vlan 500 by port
untagged ethe 2/1
no spanning-tree
!
vlan 112 by port
untagged ethe 2/3
no spanning-tree
ip-subnet 10.1.2.0 255.255.255.0
!
aaa authentication web-server default local enable
aaa authentication enable default local enable
aaa authentication login default local enable
aaa authentication login privilege-mode
enable super-user-password .....
no enable aaa console
hostname SLB-HOMER-A
ip address 10.1.2.11 255.255.255.0
ip default-gateway 10.1.2.1
ip dns domain-name nirvanix.com
ip policy 1 priority 1 tcp http global
telnet server
snmp-server
web-management enable vlan 112
[Attachment #3 (text/html)]
<html xmlns:v="urn:schemas-microsoft-com:vml" \
xmlns:o="urn:schemas-microsoft-com:office:office" \
xmlns:w="urn:schemas-microsoft-com:office:word" \
xmlns:x="urn:schemas-microsoft-com:office:excel" \
xmlns:p="urn:schemas-microsoft-com:office:powerpoint" \
xmlns:a="urn:schemas-microsoft-com:office:access" \
xmlns:dt="uuid:C2F41010-65B3-11d1-A29F-00AA00C14882" \
xmlns:s="uuid:BDC6E3F0-6DA3-11d1-A2A3-00AA00C14882" \
xmlns:rs="urn:schemas-microsoft-com:rowset" xmlns:z="#RowsetSchema" \
xmlns:b="urn:schemas-microsoft-com:office:publisher" \
xmlns:ss="urn:schemas-microsoft-com:office:spreadsheet" \
xmlns:c="urn:schemas-microsoft-com:office:component:spreadsheet" \
xmlns:odc="urn:schemas-microsoft-com:office:odc" \
xmlns:oa="urn:schemas-microsoft-com:office:activation" \
xmlns:html="http://www.w3.org/TR/REC-html40" \
xmlns:q="http://schemas.xmlsoap.org/soap/envelope/" \
xmlns:rtc="http://microsoft.com/officenet/conferencing" xmlns:D="DAV:" \
xmlns:Repl="http://schemas.microsoft.com/repl/" \
xmlns:mt="http://schemas.microsoft.com/sharepoint/soap/meetings/" \
xmlns:x2="http://schemas.microsoft.com/office/excel/2003/xml" \
xmlns:ppda="http://www.passport.com/NameSpace.xsd" \
xmlns:ois="http://schemas.microsoft.com/sharepoint/soap/ois/" \
xmlns:dir="http://schemas.microsoft.com/sharepoint/soap/directory/" \
xmlns:ds="http://www.w3.org/2000/09/xmldsig#" \
xmlns:dsp="http://schemas.microsoft.com/sharepoint/dsp" \
xmlns:udc="http://schemas.microsoft.com/data/udc" \
xmlns:xsd="http://www.w3.org/2001/XMLSchema" \
xmlns:sub="http://schemas.microsoft.com/sharepoint/soap/2002/1/alerts/" \
xmlns:ec="http://www.w3.org/2001/04/xmlenc#" \
xmlns:sp="http://schemas.microsoft.com/sharepoint/" \
xmlns:sps="http://schemas.microsoft.com/sharepoint/soap/" \
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" \
xmlns:udcs="http://schemas.microsoft.com/data/udc/soap" \
xmlns:udcxf="http://schemas.microsoft.com/data/udc/xmlfile" \
xmlns:udcp2p="http://schemas.microsoft.com/data/udc/parttopart" \
xmlns:wf="http://schemas.microsoft.com/sharepoint/soap/workflow/" \
xmlns:dsss="http://schemas.microsoft.com/office/2006/digsig-setup" \
xmlns:dssi="http://schemas.microsoft.com/office/2006/digsig" \
xmlns:mdssi="http://schemas.openxmlformats.org/package/2006/digital-signature" \
xmlns:mver="http://schemas.openxmlformats.org/markup-compatibility/2006" \
xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" \
xmlns:mrels="http://schemas.openxmlformats.org/package/2006/relationships" \
xmlns:spwp="http://microsoft.com/sharepoint/webpartpages" \
xmlns:ex12t="http://schemas.microsoft.com/exchange/services/2006/types" \
xmlns:ex12m="http://schemas.microsoft.com/exchange/services/2006/messages" \
xmlns:pptsl="http://schemas.microsoft.com/sharepoint/soap/SlideLibrary/" \
xmlns:spsl="http://microsoft.com/webservices/SharePointPortalServer/PublishedLinksService" \
xmlns:Z="urn:schemas-microsoft-com:" xmlns:st="" \
xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv=Content-Type content="text/html; charset=us-ascii">
<meta name=Generator content="Microsoft Word 12 (filtered medium)">
<style>
<!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri","sans-serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-compose;
font-family:"Calibri","sans-serif";
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;}
@page Section1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.Section1
{page:Section1;}
-->
</style>
<!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang=EN-US link=blue vlink=purple>
<div class=Section1>
<p class=MsoNormal>I am having an issue with WSM7 using TW 11.0.00dTG2. I can
make about 50-60k requests in the space of about a minute before I get timeouts
and connection failures. This is from a single host to a DSR vip with 3 IIS
hosts on the backside. If I run the same query against an individual server it
takes a bit longer, but I don’t get any failures. The configuration is
non-sticky and the queries are only about 15-20k each using apachebench on a
single url. When the serveriron starts reporting failed connections or a query
times out, I can still get to the real servers normally. Any ideas on why this
may be happening? Is there a default setting within 11.0.00dTG2 that would need
to be reset? I tried overriding by adding client TRL and other settings for per
user and for per server, but none actually seemed to help, so I reverted.. Here
is the config, can anyone spot something wrong?? One note, the application
actually returns a 403 when asking for “/”, so I want to make sure
those pass.. I did disable l7 after I added the 200 and 403 healthcheck
responses, so those are remnants are ignored..<o:p></o:p></p>
<p class=MsoNormal><o:p> </o:p></p>
<p class=MsoNormal>Thanks!!<o:p></o:p></p>
<p class=MsoNormal>-Flint<o:p></o:p></p>
<p class=MsoNormal><o:p> </o:p></p>
<p class=MsoNormal>SLB-SSH@SLB-HOMER-A#show run<o:p></o:p></p>
<p class=MsoNormal>!Building configuration...<o:p></o:p></p>
<p class=MsoNormal>!Current configuration : 2692 bytes<o:p></o:p></p>
<p class=MsoNormal>!<o:p></o:p></p>
<p class=MsoNormal>ver 11.0.00dTG2<o:p></o:p></p>
<p class=MsoNormal>!<o:p></o:p></p>
<p class=MsoNormal>module 1 bi-0-port-wsm7-management-module<o:p></o:p></p>
<p class=MsoNormal>module 2 bi-jc-8-port-gig-module<o:p></o:p></p>
<p class=MsoNormal>!<o:p></o:p></p>
<p class=MsoNormal>server backup ethe 2/1 0012.f2aa.4311 vlan-id 500<o:p></o:p></p>
<p class=MsoNormal>server backup-preference 5<o:p></o:p></p>
<p class=MsoNormal>config-sync sender ethernet 2/1 mac 0012.f2aa.6e00 vlan-id
500<o:p></o:p></p>
<p class=MsoNormal>! <o:p></o:p></p>
<p class=MsoNormal>!<o:p></o:p></p>
<p class=MsoNormal><o:p> </o:p></p>
<p class=MsoNormal>server port 80<o:p></o:p></p>
<p class=MsoNormal> session-sync<o:p></o:p></p>
<p class=MsoNormal> tcp<o:p></o:p></p>
<p class=MsoNormal> tcp 4<o:p></o:p></p>
<p class=MsoNormal>server source-ip 10.1.2.170 255.255.255.0 0.0.0.0<o:p></o:p></p>
<p class=MsoNormal>!<o:p></o:p></p>
<p class=MsoNormal>server monitor<o:p></o:p></p>
<p class=MsoNormal>!<o:p></o:p></p>
<p class=MsoNormal>context default<o:p></o:p></p>
<p class=MsoNormal>! \
&n \
bsp; &nbs \
p;
<o:p></o:p></p>
<p class=MsoNormal>server real STAGE-N1-TS01 10.1.2.165<o:p></o:p></p>
<p class=MsoNormal> port http<o:p></o:p></p>
<p class=MsoNormal> port http max-conn 1000000<o:p></o:p></p>
<p class=MsoNormal> port http url "HEAD /"<o:p></o:p></p>
<p class=MsoNormal> port http l4-check-only<o:p></o:p></p>
<p class=MsoNormal> port http status-code 200 200 403 403<o:p></o:p></p>
<p class=MsoNormal>!<o:p></o:p></p>
<p class=MsoNormal>server real STAGE-N1-TS02 10.1.2.166<o:p></o:p></p>
<p class=MsoNormal> port http<o:p></o:p></p>
<p class=MsoNormal> port http max-conn 1000000<o:p></o:p></p>
<p class=MsoNormal> port http url "HEAD /"<o:p></o:p></p>
<p class=MsoNormal> port http l4-check-only<o:p></o:p></p>
<p class=MsoNormal> port http status-code 200 200 403 403<o:p></o:p></p>
<p class=MsoNormal>!<o:p></o:p></p>
<p class=MsoNormal>server real STAGE-N1-TS03 10.1.2.167<o:p></o:p></p>
<p class=MsoNormal> port http<o:p></o:p></p>
<p class=MsoNormal> port http max-conn 1000000<o:p></o:p></p>
<p class=MsoNormal> port http url "HEAD /"<o:p></o:p></p>
<p class=MsoNormal> port http l4-check-only<o:p></o:p></p>
<p class=MsoNormal> port http status-code 200 200 403 403<o:p></o:p></p>
<p class=MsoNormal>!<o:p></o:p></p>
<p class=MsoNormal>!<o:p></o:p></p>
<p class=MsoNormal>server virtual STAGE-TEST-VIP \
10.1.2.162
<o:p></o:p></p>
<p class=MsoNormal> predictor round-robin<o:p></o:p></p>
<p class=MsoNormal> port default dsr<o:p></o:p></p>
<p class=MsoNormal> port http<o:p></o:p></p>
<p class=MsoNormal> port http tcp-only<o:p></o:p></p>
<p class=MsoNormal> port http dsr<o:p></o:p></p>
<p class=MsoNormal> bind default STAGE-N1-TS01 default STAGE-N1-TS02
default STAGE-N1-TS03 default<o:p></o:p></p>
<p class=MsoNormal> bind http STAGE-N1-TS01 http STAGE-N1-TS02 http
STAGE-N1-TS03 http<o:p></o:p></p>
<p class=MsoNormal>!<o:p></o:p></p>
<p class=MsoNormal>vlan 1 name DEFAULT-VLAN by port<o:p></o:p></p>
<p class=MsoNormal> no spanning-tree<o:p></o:p></p>
<p class=MsoNormal>!<o:p></o:p></p>
<p class=MsoNormal>vlan 500 by port<o:p></o:p></p>
<p class=MsoNormal> untagged ethe 2/1 <o:p></o:p></p>
<p class=MsoNormal> no spanning-tree<o:p></o:p></p>
<p class=MsoNormal>!<o:p></o:p></p>
<p class=MsoNormal>vlan 112 by port<o:p></o:p></p>
<p class=MsoNormal> untagged ethe 2/3 <o:p></o:p></p>
<p class=MsoNormal> no spanning-tree<o:p></o:p></p>
<p class=MsoNormal> ip-subnet 10.1.2.0 255.255.255.0<o:p></o:p></p>
<p class=MsoNormal>!<o:p></o:p></p>
<p class=MsoNormal>aaa authentication web-server default local enable<o:p></o:p></p>
<p class=MsoNormal>aaa authentication enable default local enable<o:p></o:p></p>
<p class=MsoNormal>aaa authentication login default local
enable
<o:p></o:p></p>
<p class=MsoNormal>aaa authentication login privilege-mode<o:p></o:p></p>
<p class=MsoNormal>enable super-user-password .....<o:p></o:p></p>
<p class=MsoNormal>no enable aaa console<o:p></o:p></p>
<p class=MsoNormal>hostname SLB-HOMER-A<o:p></o:p></p>
<p class=MsoNormal>ip address 10.1.2.11 255.255.255.0<o:p></o:p></p>
<p class=MsoNormal>ip default-gateway 10.1.2.1<o:p></o:p></p>
<p class=MsoNormal>ip dns domain-name nirvanix.com<o:p></o:p></p>
<p class=MsoNormal>ip policy 1 priority 1 tcp http global<o:p></o:p></p>
<p class=MsoNormal>telnet server<o:p></o:p></p>
<p class=MsoNormal>snmp-server<o:p></o:p></p>
<p class=MsoNormal>web-management enable vlan 112<o:p></o:p></p>
</div>
</body>
</html>
_______________________________________________
foundry-nsp mailing list
foundry-nsp@puck.nether.net
http://puck.nether.net/mailman/listinfo/foundry-nsp
--===============2022174946==--
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic