'Re: rlm_ldap: All ldap connections are in use'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       freeradius-users
Subject:    Re: rlm_ldap: All ldap connections are in use
From:       Jefferson_Dümes <dumes () softhouse ! com ! br>
Date:       2004-04-29 17:01:19
Message-ID: 409134DF.6000401 () softhouse ! com ! br
[Download RAW message or body]

Hi Kostas,

I did a:
radiusd -xxxx | grep _conn

and result in:
Thu Apr 29 13:41:30 2004 : Debug:  ldap: ldap_connections_number = 600
Thu Apr 29 13:41:38 2004 : Debug: ldap_get_conn: Got Id: 0
Thu Apr 29 13:41:38 2004 : Debug: ldap_release_conn: Release Id: 0
Thu Apr 29 13:41:47 2004 : Debug: ldap_get_conn: Got Id: 1
Thu Apr 29 13:41:47 2004 : Debug: ldap_release_conn: Release Id: 1
Thu Apr 29 13:41:50 2004 : Debug: ldap_get_conn: Got Id: 2
Thu Apr 29 13:41:50 2004 : Debug: ldap_release_conn: Release Id: 2
Thu Apr 29 13:41:50 2004 : Debug: ldap_get_conn: Got Id: 3
Thu Apr 29 13:41:50 2004 : Debug: ldap_release_conn: Release Id: 3
Thu Apr 29 13:41:50 2004 : Debug: ldap_get_conn: Got Id: 4
Thu Apr 29 13:41:50 2004 : Debug: ldap_release_conn: Release Id: 4


It seems that each get_conn has a release_conn. Some idea ???

Just for information. I did a test:

I set ldap_connections_number = 200

And I did:
#radiusd -xxxx | grep _conn
Follow I "STRESSED" the radius server with many radtests (214 exactly)

Thu Apr 29 13:49:33 2004 : Debug:  ldap: ldap_connections_number = 200
Thu Apr 29 13:49:47 2004 : Debug: ldap_get_conn: Got Id: 0
Thu Apr 29 13:49:47 2004 : Debug: ldap_release_conn: Release Id: 0
Thu Apr 29 13:49:47 2004 : Debug: ldap_get_conn: Got Id: 1
Thu Apr 29 13:49:47 2004 : Debug: ldap_release_conn: Release Id: 1
.
.
.
Thu Apr 29 13:51:31 2004 : Debug: ldap_get_conn: Got Id: 198
Thu Apr 29 13:51:32 2004 : Debug: ldap_release_conn: Release Id: 198
Thu Apr 29 13:51:32 2004 : Debug: ldap_get_conn: Got Id: 199
Thu Apr 29 13:51:32 2004 : Debug: ldap_release_conn: Release Id: 199

After I kill and starts again that command: #radiusd -xxxx | grep _conn

Thu Apr 29 13:51:46 2004 : Debug:  ldap: ldap_connections_number = 200
Thu Apr 29 13:51:47 2004 : Debug: ldap_get_conn: Got Id: 0
Thu Apr 29 13:51:47 2004 : Debug: ldap_release_conn: Release Id: 0
Thu Apr 29 13:51:47 2004 : Debug: ldap_get_conn: Got Id: 1
Thu Apr 29 13:51:47 2004 : Debug: ldap_release_conn: Release Id: 1
Thu Apr 29 13:51:47 2004 : Debug: ldap_get_conn: Got Id: 2
Thu Apr 29 13:51:47 2004 : Debug: ldap_release_conn: Release Id: 2
.
.
.
Thu Apr 29 13:51:47 2004 : Debug: ldap_get_conn: Got Id: 13
Thu Apr 29 13:51:47 2004 : Debug: ldap_release_conn: Release Id: 13


It doesn't reusing ldap_connections ???




Kostas Kalevras escreveu(wrote):
> On Thu, 29 Apr 2004, [ISO-8859-1] Jefferson D?mes wrote:
> 
> 
>>These messages are being loged to my Freeradius 0.9.3. Don't care what number I put in the
>>ldap_connections_number.
>>
>>If I put 10, when it arrives 10 auths it starts to show that message. (And fail to auth users)
>>
>>I receive 5 or 6 auths / minute. So radius isn't overloaded.
> 
> 
> That's very strange and should not happen.
> Run your radius server like:
> radiusd -xxxx
> 
> Look for lines:
> ldap_get_conn: Got Id:
> ldap_release_conn: Release Id:
> 
> Make sure that rlm_ldap releases each connection after it has handled each auth
> request. Check the ldap server logs for anything strange. Especially for
> connections initiation and breakdown. Right now i can't think of any reason for
> you to see such behaviour.
> 
> 
>>While I cant find a solution e put ldap_connections_number = 600 and in the cron I put to restart
>>radius in 10 by 10 minutes.
>>
>>We've got other services authenticating with my OpenLDAP with NO problem.
>>
>>These are some of my configs in the radiusd.conf (I think is important).
>>
>>max_request_time = 30
>>cleanup_delay = 5
>>max_requests = 1024
>>thread pool {
>>         start_servers = 15
>>         max_servers = 32
>>         min_spare_servers = 3
>>         max_spare_servers = 10
>>         max_requests_per_server = 15
>>}
>>ldap_connections_number = 600
>>         timeout = 15
>>         timelimit = 15
>>         net_timeout = 60


- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic