Results 1 to 7 of 7
  1. 04-17-2012, 09:26 AM #1
    shawnlehner
    shawnlehner is offline
    Newbie
    Join Date
    Sep 2010
    Posts
    7

    Default Timeout at ~200 concurrent users

    Hello Everyone,

    I am running Untangle as the primary router on a few servers at our colo and I am having some issues with timeouts. I am using Blitz to profile our performance and at around 200 concurrent requests the timeouts begin to appear and get much worse as the load increases. This must be a configuration issue on my end, anyone have any ideas?

    Things I know:
    1. During this the router shows "low" CPU usage.
    2. The webserver has very minimal CPU/Disk usage.



    Hardware:
    The router and webserver are 2 separate servers (I am not running VM on these) but both are identical 1U servers. They are 4x2.8GHz Intel CPUs with 6GB of ram on Supermicro boards. The router is using the 2 onboard NIC provided by the board.
    Last edited by shawnlehner; 04-17-2012 at 09:30 AM.
  2. 04-17-2012, 10:43 AM #2
    dwasserman
    dwasserman is online now
    Untangle Ninja dwasserman's Avatar
    Join Date
    Jun 2008
    Location
    Argentina
    Posts
    3,998

    Default

    Whats application are in use? and how they are configured?
    The world is divided into 10 kinds of people, who know binary and those not
  3. 04-17-2012, 12:01 PM #3
    sky-knight
    sky-knight is online now
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    16,973

    Default

    Web Filter, Web Filter Lite, and both AV modules are dangerous, and often disastrous to operate in front of a live web server.

    Untangle's filters are by and large not direction specific. So if you've installed all the modules, and running it all via the default rack, well you're using technology designed to protect end users from the dangers of the world to protect the world from your web server. It doesn't end well.
    Rob Sandling, BS:SWE, MCP
    Intouch Technology
    Phone: 480-272-9889
    NexgenAppliances.com
    Phone: 866-794-8879
  4. 04-17-2012, 01:32 PM #4
    shawnlehner
    shawnlehner is offline
    Newbie
    Join Date
    Sep 2010
    Posts
    7

    Default

    I am running intrusion prevention and reports right now ... I turned off attack blocker to see if that helped.
  5. 04-17-2012, 01:47 PM #5
    dmorris
    dmorris is online now
    Untangle Junkie dmorris's Avatar
    Join Date
    Nov 2006
    Location
    San Mateo, CA
    Posts
    11,749

    Default

    attack blocker might interfere with performance tests as it will often perceive it as a DoS attack and throttle that IP back.

    I'd turn it off for testing, but I would leave it on in production.
    Attention: Support and help on the Untangle Forums is provided by volunteers and community members like yourself.
    If you need Untangle support please call or email support@untangle.com
  6. 04-17-2012, 01:49 PM #6
    shawnlehner
    shawnlehner is offline
    Newbie
    Join Date
    Sep 2010
    Posts
    7

    Default

    Thanks dmorris. I turned it off and it did help with testing a little; it took me from ~120 to ~200 connections before timeouts started to climb.
  7. 04-18-2012, 01:32 PM #7
    shawnlehner
    shawnlehner is offline
    Newbie
    Join Date
    Sep 2010
    Posts
    7

    Default

    I just ran another Blitz test with the following settings:
    • 250 users
    • over 1 minute
    • with a timeout of 5 seconds


    When I run this on our fairly low end Amazon instance there is 0 timeouts/errors. When I run it on our dedicated colo server (with much higher specs) I get: 6,315 hits, 97 timeouts, 37 errors
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules


SEO by vBSEO 3.6.0 PL2