update_alias_url_data stalls packet flow
-
@stephenw10 hmm, i don't have an exact count but I will guess 50-60% less? not enough days have passed since I installed the patch, so even a precise count would be statistically meaningless.
I don't have pfBlockerNG installed. no Snort/Suricata either. i would like to pause updating this list entirely until 2.7 is stable. since i don't know what is triggering it, i can only remove the list entirely.
-
But what sort of interruption are you seeing? Lose one ping in a ping stream? Completely loss of connectivity?
-
@stephenw10 my applications require sub second liveliness and they get knocked out for a good 30 to 40 seconds. I wouldn't care if it was just a monitor saying the connection is iffy... the applications are failing to perform and those are the alarms i see every night.
the uptime monitors (minute resolution) don't even register the downtime.
-
Ah, OK. Then that is something different. Even without the patch that delay loading the filter was only ever a few seconds.
What do you actually see logged at that time? -
It is possible that it harms performance for 30 to 40 seconds because if the application is offline for a few seconds it has to catch up with the lost time.
BUT I have done pings (one per second between 2:15 and 2:20) and there are several failures over that 30-40 sec time span:
the 02:15:02.413719768 can be ignored. it's a random failure. but the cluster from 02:17:45.909412786 to 02:18:36.380112182 is when the outage occurred.
PS: any rough idea when 2.7 will ship? as in 1 month? 6 months?
-
Not at this time but 22.05, which includes that same fix, is imminent.
Steve
-
@stephenw10 said in update_alias_url_data stalls packet flow:
Not at this time but 22.05, which includes that same fix, is imminent.
Steve
hmmm, I'm inclined to upgrade sooner or later, but the same fix won't solve it... happy to go private with you if you'd like to dig further. thank you very much for all your help!
-
That's not the counters workaround it's the fixes to pf to prevent the delays. Same as 2.7.
If you manually the update command:
/etc/rc.update_alias_url_data
Do you see the same thing? -
weird, running
/etc/rc.update_alias_url_datamanually doesn't show up in the log at all (and no downtime either)good to know, i will look to upgrade. any rough idea when the free enrollment will be over? Happy to be a paying customer, just a solo guy though, budget is tight.
-
Mmm, yeah it seems likely that's just part of something else that is called at that time. Nothing else is logged at that point?
-
@stephenw10 nada!
