Home » Categories » Linux

RHEL : How to deal with “CLOSE_WAIT” and “TIME_WAIT” connection

Article Number: 478 | Rating: 5/5 from 3 votes | Last Updated: Thu, Feb 14, 2019 10:37 AM

RHEL : How to deal with “CLOSE_WAIT” and “TIME_WAIT” connection

by · Published · Updated

 
Linux How to Document

CLOSE_WAIT is the state for the TCP connection after the remote side has requested a shut down(FIN), and the TCP connection is waiting for the local application to close the socket. There is no timeout for a thread in CLOSE_WAIT state. So need to find out why the receiving application is not doing a proper close() call on the socket

 

 
 
 
 
For Example look at the following netstat output:
 
# netstat -a | grep dcd
      *.dcd               *.*                0      0     0      0 LISTEN
support.dcd         troppus.774           5840      0 10124      0 CLOSE_WAIT
support.dcd         troppus.638           5840      0 10124      0 CLOSE_WAIT
support.dcd         troppus.818           5840      0 10124      0 CLOSE_WAIT
support.dcd         troppus.782           5840      0 10124      0 CLOSE_WAIT
From the about output , you can see several connection are in CLOSE_WAIT  State.

 

Connection Flow for TCP Connection that leads to CLOSE_WAIT State

 

tcp_close_1
 

How do we Close the CLOSE_WAIT connections?

 
As of now , there is no reasonable way to clear these connections without doing network restart or server reboot.
 

::: What is TIME_WAIT Connection?

 
TIME-WAIT – represents waiting for enough time to pass to be sure the remote TCP received the acknowledgment of its connection termination request. The Connections enter into TIME_WAIT status only during the condition when too many clients connections are established in too short period of time and each clients disconnect the connection quickly
 
Red Hat Enterprise Linux set this value as 60 seconds in the code level. It’s not changeable, so we don’t have an option on the command line.
 

How do we Reduce the TIME_WAIT Sockets?

 
Below Two related parameter could help us to reduce TIME_WAIT sockets, but you have to you have to tune them only on expert advice who knows your environment better.
 
tcp_tw_recycle – BOOLEAN  – 
 Enable fast recycling TIME-WAIT sockets. Default value is 0. Enabling this option is not recommended since this causes problems when working with NAT(Network Address Translation).
tcp_tw_reuse – BOOLEAN
 Allow to reuse TIME-WAIT sockets for new connections when it is safe from protocol viewpoint. Default value is 0.
 

How do we activate it?

 Add following lines into /etc/sysctl.conf.
 
net.ipv4.tcp_tw_recycle = 1
net.ipv4.tcp_tw_reuse = 1
 
After adding that options, please execute the following command to apply the above changes.
 
#sysctl -p
Posted - Thu, Feb 14, 2019 10:37 AM. This article has been viewed 24869 times.
Filed Under: Linux
5 (3)
Article Rating (3 Votes)
Rate this article
Attachments
There are no attachments for this article.
Comments
There are no comments for this article. Be the first to post a comment.
Full Name
Email Address
Security Code Security Code
Related Articles RSS Feed
Cron YUM How to use yum-cron to automatically update RHEL/CentOS Linux
Viewed 2188 times since Fri, Oct 26, 2018
Terminal based "The Matrix" like implementation
Viewed 1916 times since Thu, Apr 18, 2019
How to use yum command on CentOS/RHEL
Viewed 10391 times since Wed, Oct 17, 2018
How to configure an SSH proxy server with Squid
Viewed 2631 times since Sun, Dec 6, 2020
List usernames instead of uids with the ps command for long usernames
Viewed 2033 times since Wed, Jul 25, 2018
stunnel Howto A Guide to create SSL access to a HTTP-only webserver with stunnel
Viewed 2414 times since Fri, Sep 28, 2018
O’Reilly’s CD bookshelf
Viewed 11386 times since Wed, Jun 27, 2018
logrotate Log Rotate Configuration
Viewed 2935 times since Sun, Jan 12, 2020
Deskshare TLS over Stunnel
Viewed 2526 times since Fri, Sep 28, 2018
ZFS: Remove an existing zfs filesystem
Viewed 1874 times since Sun, Jun 3, 2018