starlingx/config-files
Code Issues Proposed changes
StarlingX System Configuration Files
132 Commits 14 Branches 21 Tags 4.1 MiB
Shell 88.5%
Makefile 8.6%
Python 1.7%
PHP 1%
DTrace 0.2%
fbc09b8db8
Go to file
Sun Austin fbc09b8db8 Fix Periodic message loss between VIM and Openstack REST APIs 
set net.ipv4.tcp_tw_reuse=0 to avoid dnat conntrack invalid
and remove customizing ephemeral port range

The probe connection action before going to time_wait state.
Probe connection
controller               pod        TCP FLAG      SEQ           ACK
controller:50538 ---> endpoint:9292     SYN       2707980036       0
controller:50538 <--- endpoint:9292   SYN ACK     1599414185
2707980037
controller:50538 ---> endpoint:9292     ACK       2707980037
1599414186
controller:50538 ---> endpoint:9292   FIN ACK     2707980037
1599414186
controller:50538 <--- endpoint:9292     ACK       1599414186
2707980038
controller:50538 <--- endpoint:9292   FIN ACK     1599414186
2707980038
controller:50538 ---> endpoint:9292     ACK       2707980038
1599414187

And for the curl command connection with same port 50538: it will be
like
controller              pod          TCP FLAG         SEQ          ACK
controller:50538 -->  service:9292     SYN        2917708674        0
controller:50538 --> endpoint:9292     SYN        2917708674        0
controller:24479 <-- endpoint:9292   SYN ACK      2742336307
2917708675
controller:50538 <-- endpoint:9292   SYN ACK      2742336307
2917708675
controller:50538 -->  service:9292     ACK        2707980038
1599414187
controller:50538 -->  service:9292     ACK        2707980038
1599414187
controller:50538 -->  service:9292     ACK(DROP)  2707980038
1599414187

The last ACK(controller:50538-->service:9292) SEQ and ACK is same as
Probe TIME_WAIT latest ACK’s.
from
https://github.com/torvalds/linux/blob/v3.10/net/ipv4/tcp_ipv4.c#L2002 ,
it only check (des ip , des port, src ip, and src port).Because this is
not
 a correct SEQ/ACK , then it is set invalid and then dropped.

If disable tcp_tw_reuse, the port nova-api will be always not same as
 pod probe using, then the issue should be gone.
set back default(centos) ephemeral port range to avoid ephemeral port
exhaustion .

Closes-Bug: 1817936

Change-Id: I0b37e9829ac5d3bc9ca1a0b8f55abc632c79f446
Signed-off-by: Sun Austin <austin.sun@intel.com>
2019-09-11 10:28:18 +08:00
audit-config Add notices to Intel authored files. 2019-03-20 10:31:10 -06:00
centos-release-config Add notices to Intel authored files. 2019-03-20 10:31:10 -06:00
dhcp-config Add notices to Intel authored files. 2019-03-20 10:31:10 -06:00
dnsmasq-config Add notices to Intel authored files. 2019-03-20 10:31:10 -06:00
docker-config Docker logs are not rotating 2019-05-08 13:55:42 -04:00
filesystem-scripts Relocate filesystem-scripts to stx-integ/filesystem/filesystem-scripts 2018-08-01 12:20:04 -04:00
haproxy-config Add notices to Intel authored files. 2019-03-20 10:31:10 -06:00
initscripts-config Fix Periodic message loss between VIM and Openstack REST APIs 2019-09-11 10:28:18 +08:00
io-scheduler/centos Relocate io-scheduler to stx-integ/config-files/io-scheduler 2018-08-01 12:23:51 -04:00
iptables-config Add notices to Intel authored files. 2019-03-20 10:31:10 -06:00
iscsi-initiator-utils-config Add notices to Intel authored files. 2019-03-20 10:31:10 -06:00
lighttpd-config Add notices to Intel authored files. 2019-03-20 10:31:10 -06:00
logrotate-config Add notices to Intel authored files. 2019-03-20 10:31:10 -06:00
memcached-custom Add notices to Intel authored files. 2019-03-20 10:31:10 -06:00
mlx4-config Change compute node to worker node personality 2018-12-12 15:09:04 -05:00
net-snmp-config Add notices to Intel authored files. 2019-03-20 10:31:10 -06:00
nfs-utils-config Add notices to Intel authored files. 2019-03-20 10:31:10 -06:00
ntp-config Add notices to Intel authored files. 2019-03-20 10:31:10 -06:00
openldap-config Add notices to Intel authored files. 2019-03-20 10:31:10 -06:00
openssh-config Fix user does not login within configured time(60s) login is aborted 2019-08-16 09:35:36 +00:00
openvswitch-config Add pmon configuration file for ovs-vswitchd 2019-04-12 20:41:32 +08:00
pam-config Fix System account doesn't block after invalid login attempts 2019-07-24 02:21:04 +00:00
rabbitmq-server-config calculate rabbitmq io thread pool size based on platform cores 2019-07-31 13:49:48 +08:00
rsync-config Add notices to Intel authored files. 2019-03-20 10:31:10 -06:00
setup-config Add notices to Intel authored files. 2019-03-20 10:31:10 -06:00
shadow-utils-config Add notices to Intel authored files. 2019-03-20 10:31:10 -06:00
sudo-config integ: Convert wrsroot -> sysadmin 2019-06-14 15:09:09 -07:00
syslog-ng-config dcdbsync for containerized openstack services - logging 2019-08-07 13:39:29 -04:00
systemd-config integ: Convert wrsroot -> sysadmin 2019-06-14 15:09:09 -07:00
util-linux-config Add notices to Intel authored files. 2019-03-20 10:31:10 -06:00
.gitignore Adding zuul jobs for new repo 2019-09-09 14:10:43 -05:00
.gitreview Add a .gitreview file to the new repo 2019-09-09 09:19:19 -05:00
.zuul.yaml Adding zuul jobs for new repo 2019-09-09 14:10:43 -05:00
centos_iso_image.inc Config file changes to add 'centos-release-config dhcp-config dnsmasq-config haproxy-config initscripts-config lighttpd-config net-snmp-config openssh-config setup-config systemd-config audit-config docker-config io-scheduler iptables-config memcached-custom ntp-config pam-config rsync-config shadow-utils-config sudo-config syslog-ng-config util-linux-config filesystem-scripts iscsi-initiator-utils-config nfs-utils-config openldap-config logrotate-config mlx4-config openvswitch-config ' after relocation from 'stx-integ' 2019-09-04 11:03:51 -04:00
centos_pkg_dirs Config file changes to add 'centos-release-config dhcp-config dnsmasq-config haproxy-config initscripts-config lighttpd-config net-snmp-config openssh-config setup-config systemd-config audit-config docker-config io-scheduler iptables-config memcached-custom ntp-config pam-config rsync-config shadow-utils-config sudo-config syslog-ng-config util-linux-config filesystem-scripts iscsi-initiator-utils-config nfs-utils-config openldap-config logrotate-config mlx4-config openvswitch-config ' after relocation from 'stx-integ' 2019-09-04 11:03:51 -04:00
CONTRIBUTING.rst Adding zuul jobs for new repo 2019-09-09 14:10:43 -05:00
HACKING.rst Adding zuul jobs for new repo 2019-09-09 14:10:43 -05:00
requirements.txt Adding zuul jobs for new repo 2019-09-09 14:10:43 -05:00
test-requirements.txt Adding zuul jobs for new repo 2019-09-09 14:10:43 -05:00
tox.ini Adding zuul jobs for new repo 2019-09-09 14:10:43 -05:00