Hi,<br><br>We had similar problem before, but I am not sure if it is related to your case.<br><br>The file descriptors that were opened by the ns-slapd process was all in a CLOSE_WAIT state.  You can try execute &quot;netstat -anput | grep CLOSE_WAIT&quot; and see if there&#39;s a lot of dangling CLOSE_WAIT socket opened by ns-slapd.<br>
<br>If that was the case, I suggest you to update to the latest version of 389 directory because that has been fixed.<br><br>This is the bugzilla ticket that I submitted awhile back.<br><a href="https://bugzilla.redhat.com/show_bug.cgi?id=567429">https://bugzilla.redhat.com/show_bug.cgi?id=567429</a><br>
<br>- David<br><br><div class="gmail_quote">2010/8/28 Andrey Ivanov <span dir="ltr">&lt;<a href="mailto:andrey.ivanov@polytechnique.fr">andrey.ivanov@polytechnique.fr</a>&gt;</span><br><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
Hi,<br><br>You can try to change the following parameters to reduce the timeouts of the connections : <br>* system parameters (reduce keepalive time to 700 seconds):<br>                               echo &quot;net.ipv4.tcp_keepalive_time = 700&quot;                &gt;&gt; /etc/sysctl.conf<br>

                               sysctl -p<br>* 389 parameters in cn=config (change the maximum time limit per search operation to 120 sec &amp; set idle connection timeout to 600 sec):<br>                               nsslapd-timelimit: 120<br>

                               nsslapd-idletimeout: 600<br> <br>The file descriptor number  used by a connecton can be seen in access log (fd=139) :<br>[28/Aug/2010:14:35:08 +0200] conn=58377 fd=139 slot=139 SSL connection from x.x.x.x to x.x.x.x<br>

                             <br>You may also use /<a href="http://logconv.pl" target="_blank">logconv.pl</a> utility to see the long requests, number of parallel/oncurrent connections and file descriptor usage (&#39;Highest FD taken&#39;)<br>

Total Connections:            2855<br>Peak Concurrent Connections:  4<br>Total Operations:             157116<br>Total Results:                157139<br>Overall Performance:          100.0%<br>...<br>FDs Taken:                    3112<br>

FDs Returned:                 3112<br>Highest FD Taken:             143<br>...<br>----- Top 20 Most Frequent etimes -----<br><br>156965          etime=0     <br>58              etime=1     <br>58              etime=3     <br>

58              etime=2  <br><br><br>@+<br><br><div class="gmail_quote">2010/8/27 Angel Bosch Mora <span dir="ltr">&lt;<a href="mailto:angbosch@conselldemallorca.net" target="_blank">angbosch@conselldemallorca.net</a>&gt;</span><div>
<div></div><div class="h5"><br><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
hi,<br>
<br>
i had problems with &quot;too many fds open&quot; on some instances and after digging a bit i&#39;ve found that ns-slapd dont die.<br>
<br>
i got 5 similar installations and this is happening just in two of them and i can&#39;t identify what is about.<br>
<br>
<br>
i&#39;ve been recollecting process informations and i know for sure that the only process that keep increasing is ns-slapd and eventually, after some weeks, 389 starts refusing new connections and i got the &quot;too many fds open&quot; message.<br>


<br>
i can increase max fds but the problem of processes keeping alive is still there.<br>
<br>
anyone facing similar situation?<br>
<br>
regards,<br>
<br>
abosch<br>
<font color="#888888">--<br>
389 users mailing list<br>
<a href="mailto:389-users@lists.fedoraproject.org" target="_blank">389-users@lists.fedoraproject.org</a><br>
<a href="https://admin.fedoraproject.org/mailman/listinfo/389-users" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/389-users</a><br>
</font></blockquote></div></div></div><br>
<br>--<br>
389 users mailing list<br>
<a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a><br>
<a href="https://admin.fedoraproject.org/mailman/listinfo/389-users" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/389-users</a><br></blockquote></div><br>