RHEL : How to deal with “CLOSE_WAIT” and “TIME_WAIT” connection

RHEL : How to deal with “CLOSE_WAIT” and “TIME_WAIT” connection

 
Linux How to Document

CLOSE_WAIT is the state for the TCP connection after the remote side has requested a shut down(FIN), and the TCP connection is waiting for the local application to close the socket. There is no timeout for a thread in CLOSE_WAIT state. So need to find out why the receiving application is not doing a proper close() call on the socket

 

 
 
 
 
For Example look at the following netstat output:
 
# netstat -a | grep dcd
      *.dcd               *.*                0      0     0      0 LISTEN
support.dcd         troppus.774           5840      0 10124      0 CLOSE_WAIT
support.dcd         troppus.638           5840      0 10124      0 CLOSE_WAIT
support.dcd         troppus.818           5840      0 10124      0 CLOSE_WAIT
support.dcd         troppus.782           5840      0 10124      0 CLOSE_WAIT
From the about output , you can see several connection are in CLOSE_WAIT  State.

 

Connection Flow for TCP Connection that leads to CLOSE_WAIT State

 

tcp_close_1
 

How do we Close the CLOSE_WAIT connections?

 
As of now , there is no reasonable way to clear these connections without doing network restart or server reboot.
 

::: What is TIME_WAIT Connection?

 
TIME-WAIT – represents waiting for enough time to pass to be sure the remote TCP received the acknowledgment of its connection termination request. The Connections enter into TIME_WAIT status only during the condition when too many clients connections are established in too short period of time and each clients disconnect the connection quickly
 
Red Hat Enterprise Linux set this value as 60 seconds in the code level. It’s not changeable, so we don’t have an option on the command line.
 

How do we Reduce the TIME_WAIT Sockets?

 
Below Two related parameter could help us to reduce TIME_WAIT sockets, but you have to you have to tune them only on expert advice who knows your environment better.
 
tcp_tw_recycle – BOOLEAN  – 
 Enable fast recycling TIME-WAIT sockets. Default value is 0. Enabling this option is not recommended since this causes problems when working with NAT(Network Address Translation).
tcp_tw_reuse – BOOLEAN
 Allow to reuse TIME-WAIT sockets for new connections when it is safe from protocol viewpoint. Default value is 0.
 

How do we activate it?

 Add following lines into /etc/sysctl.conf.
 
net.ipv4.tcp_tw_recycle = 1
net.ipv4.tcp_tw_reuse = 1
 
After adding that options, please execute the following command to apply the above changes.
 
#sysctl -p
5 (3)
Article Rating (3 Votes)
Rate this article
Attachments
There are no attachments for this article.
Comments
There are no comments for this article. Be the first to post a comment.
Full Name
Email Address
Security Code Security Code
Related Articles RSS Feed
Linux - How to monitor CPU usage
Viewed 6372 times since Fri, Jun 8, 2018
Oracle Linux 7 – How to audit changes to a trusted file such as /etc/passwd or /etc/shadow
Viewed 2880 times since Wed, Jul 25, 2018
ZFS: Grow/Shrink an existing zfs filesystem
Viewed 6239 times since Sun, Jun 3, 2018
Red Hat Cluster Tutorial
Viewed 1992 times since Sun, Jun 3, 2018
RHEL: Bonding network interfaces
Viewed 3611 times since Sat, Jun 2, 2018
how to list all hard disks in linux from command line
Viewed 3433 times since Mon, Jan 28, 2019
A tcpdump Tutorial and Primer with Examples
Viewed 5066 times since Sun, Jun 17, 2018
HowTo: Send Email from an SMTP Server using the Command Line
Viewed 1868 times since Mon, Feb 18, 2019
12 Tcpdump Commands – A Network Sniffer Tool
Viewed 8727 times since Fri, Jul 27, 2018
Odpalenie polecenia tylko na jedną godzinę
Viewed 2770 times since Thu, May 24, 2018