Listen queue overflow
-
Hey All
24.11-RELEASE (amd64)
built on Fri Nov 22 15:34:00 AEDT 2024
FreeBSD 15.0-CURRENTI'm getting the below error in system logs and am wondering the best way to resolve
sonewconn: pcb 0xfffff8002753dd00 (local:/var/etc/openvpn/server1/sock): Listen queue overflow: 2 already in queue awaiting acceptance (1 occurrences), euid 0, rgid 0, jail 0 -
Increasing the tunable 'kern.ipc.somaxconn' might help, but its possible OpenVPN internally has a much lower queue limit.
-
i added 'kern.ipc.somaxconn' in system tunables and set it to 2048 however I'm still seeing the error
Can you clarify what you mean about the OpenVPN lower queue limit and how that mioght be raised ?
-
@ipguy Some services dont max out to the OS limit and have their own internal limit, but if it is the case then I dont know how you would raise it, I think a VPN hitting the listen queue limit is highly unlikely unless you running a public VPN server that has gone viral or something. So it seems odd to me you have this problem in the first place.
'netstat -L' shows listen queues, looks like OpenVPN has a limit of 1. My OpenVPN processes are running in client mode though.
There is nothing in the manpage to tune it, and I found a very old dev post from people asking for the limit to be raised, it very likely is compiled in to the binary.