cloudstack icon indicating copy to clipboard operation
cloudstack copied to clipboard
verified publisher icon apache

conntrackd filling up var

Open shawniverson opened this issue 3 years ago • 2 comments

ISSUE TYPE
  • Bug Report
COMPONENT NAME
VR
CLOUDSTACK VERSION
latest
CONFIGURATION
N/A
OS / ENVIRONMENT
KVM
SUMMARY
We have large customers with a lot of VR traffic traversing the VRs.  Logrotate cannot keep up and /var fills up to 100%, causing the VR to exhibit problems when attempting to start/restart instances in the VPC and/or traffic stops flowing.  Conntrackd is logging verbosely to daemon.log.
STEPS TO REPRODUCE

1. Construct a VPC with a redundant VR pair with a private gateway or tunnel
2. Create a large amount of traffic to/from a VPC over gateway or tunnel
EXPECTED RESULTS
/var should not fill up regardless of traffic load
ACTUAL RESULTS
/var fills up

shawniverson avatar Sep 08 '22 22:09 shawniverson

Thanks for opening your first issue here! Be sure to follow the issue template!

boring-cyborg[bot] avatar Sep 08 '22 22:09 boring-cyborg[bot]

Propose adding the following to /opt/cloud/templates/conntrackd.conf.templ as follows in systemvm.iso:

@@ -413,6 +413,9 @@
         #   ESTABLISHED CLOSED TIME_WAIT CLOSE_WAIT for TCP
         # }
     }
+    Stats {
+        LogFile off
+    }
 
     # default debian service unit file is of Type=notify
     Systemd on

Can prepare PR.

shawniverson avatar Sep 13 '22 15:09 shawniverson