Followup on today lists.ovirt.org http outage
Michael Scherer
mscherer at redhat.com
Tue Jun 17 13:47:14 UTC 2014
Hi,
Brian pinged me on a failure on lists.ovirt.org around 13h15 UTC. After
scratching my head for a while ( since everything was running fine,
despites regular Out of memory on the server ), it turned out to be a
user trying to get the iso with a download accelerator. I first added
more server, but without luck.
So as I am more of the kind "shoot first, ask later", I did kill the
connexion with iptables, then limit it with iptables ( but with some
side effect ), then installed mod_limitipconn to limit to 10 tcp
connexion per IP.
in short :
- yum install mod_limitipconn
- add
<IfModule mod_limitipconn.c>
MaxConnPerIP 10
</IfModule>
to /etc/httpd/conf.d/resources.ovirt.org.conf
I guess we should add this in some puppet module somewhere ?
--
Michael Scherer
Open Source and Standards, Sysadmin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: This is a digitally signed message part
URL: <http://lists.ovirt.org/pipermail/infra/attachments/20140617/e02a1aa3/attachment.sig>
More information about the Infra
mailing list