On 2 Sep 2021, at 00:50, Michael Starling
<mlstarling31(a)hotmail.com> wrote:
Thank you, Paul.
This is our current setting. Looks like we are at 5 minutes so we should be ok.
net.ipv4.tcp_keepalive_intvl = 75
net.ipv4.tcp_keepalive_probes = 9
net.ipv4.tcp_keepalive_time = 300
There are also a number of IO tuning options for connection life inside LDAP you can tune
to help discard and cycle out stale connections quicker.
https://access.redhat.com/documentation/en-us/red_hat_directory_server/11...
If we receive a partial message, how long to wait for the remaining components to be
recieved.
https://access.redhat.com/documentation/en-us/red_hat_directory_server/11...
If a client is idle with no messages being received, how long before we disconnect them.
https://access.redhat.com/documentation/en-us/red_hat_directory_server/11...
Maximum number of connections. IIRC this might be automatically set from FD's in the
system, but if not you may need to set this to probably 80% of your FD limit frlom the
systemd service tunings you have provided.
Hope that helps,
--
Sincerely,
William Brown
Senior Software Engineer, Identity and Access Management
SUSE Labs, Australia