Changing Max-Connections in CSS 11500

Similar Messages

• CSS 11500 - Change name device

  Hi,
  I need to change the device name (hostname) of my CSS 11500. How I can do that? I'm searching since some hours without result.

  to avoid having to retype the name after each reboot, you have to do a save_profile.
  Gilles.

• How do i change http max connections, http persistent, pipling to true, and proxy pipling to true

  how do i change http max connections, http max persistent, pipling to true, proxy pipling to true.

  Simpler question: Can I change the max connections in Flex?
  Thank you.

• CSS 11500 Series LOGs

  Hi everyone,
  I need some help about one type of CSS 11500 LOG messages:
  OCT 12 07:47:03 1/1 273 WCC-6: Computing slow start parameters for newly activated service index 4
  OCT 12 10:25:05 1/1 274 WCC-6: Computing slow start parameters for newly activated service index 3
  OCT 12 11:19:49 1/1 275 WCC-6: Computing slow start parameters for newly activated service index 3
  OCT 12 11:26:33 1/1 276 WCC-6: Computing slow start parameters for newly activated service index 3
  OCT 12 12:20:37 1/1 277 WCC-6: Computing slow start parameters for newly activated service index 3
  OCT 12 14:04:32 1/1 278 WCC-6: Computing slow start parameters for newly activated service index 4
  OCT 12 14:04:53 1/1 279 WCC-6: Computing slow start parameters for newly activated service index 5
  OCT 12 14:05:01 1/1 280 WCC-6: Computing slow start parameters for newly activated service index 4
  I was trying to find some explanation about these LOGs, but I didn’t have any success.
  My questions are:
  1. What does this LOG type mean?
  2. Does it signalize some issue on the service?
  Thanks a lot for the help!
  Regards,
  Marko

  Hi Marko,
  Please go through the below link:
  http://www.cisco.com/en/US/docs/app_ntwk_services/data_center_app_services/css11500series/v8.20/configuration/content_lb/guide/ContRule.html#wpmkr1150644
  Just pasting some content. Read the details please.
  Slowly Starting Connections on a Service
  When you configure a content rule with the least connection (leastconn) load-balancing method, a service on the rule with the fewest connections receives the next request. If you activate a service on this rule, the service may become flooded with requests.
  To prevent the flooding of connections on a newly activated or reactivated service, you can enable the slow-start feature on a content rule configured with the leastconn load-balancing method. Through this feature, you can configure:
  •The rate that an activated service receives connections. The slow-start rate is applied globally to all leastconn content rules on the CSS. By default, the rate is enabled with a default value of 3. If you disable the rate by setting it to 0, the slow-start feature is disabled on all leastconn content rules configured on the CSS.
  Note We recommend that you do not change the slow-start rate default value.
  •The maximum time that the service remains in the slow-start process. The slow-start timer sets the number of seconds that the service on a leastconn content rule is in the slow-start process. The timer is applied to a leastconn content rule. By default, the timer is disabled. If the timer is disabled, the slow-start feature is disabled on the rule.
  When you enable the slow-start feature on the CSS and a leastconn rule, a service on the rule enters the slow-start process when you:
  •Add and activate a service to the rule
  •Reactivate a service after suspending it on the rule
  •Activate the rule
  When you activate a rule, it starts to load balance the connections on its services. The service with the least number of connections is selected to enter the slow-start process.
  When a rule has only two services, only one service can enter the slow-start process. When the rule has more than two services, a newly activated service can enter the slow-start process when one of the services is currently in the slow-start process and the other services are out of the slow-start process.
  A service in the slow-start process slowly continues to receive connections until either the slow-start timer expires or its connections equal the number of connections on the other active services of the rule. Then, the service exits the slow-start process and starts receiving connections as it normally would.
  Regards,
  Kanwal

• Services with different IP address subnets over CSS 11500 series

  Hi all folks!
  I have two CSS 11500 series...
  In just a few months i will have ready a DRS (Disaster Recovery Site), where i will have 2 more servers to add to the environment.
  But this servers will be in a different subnet from that today i have for the servers who are configured in the current services of my CSS.
  So then the doubt i arises is:
  Is correct to add two new services with these servers, but using the IP addressing of the DRS site???, and including on the CSS a static route to this network, (of the DRS) in order to reach them?? is it correct, it will work well?
  This would be so....
               ________________LAN to LAN_____________________
               |                                                                                |
               |                                                                                |
  |------SITE A------|                                                        |------SITE B------|  
       [Firewall] ===============IPSEC============= [Firewall]               
             |                                                                                |
             |                                                                                |
  [CSS-A]-[CSS-B]                                                            [SWITCH]
         |          |                                                                     |         |         
       [SWITCH]                                                                    |         |                                                                 
  [srvA] [srvB] [srvC]                                                          [srvD] [srvE]
  So, at [CSS-A] & B, i will put a static route to firewall that know the subnet of site B through the IPSEC tunnel.
  So In the CSSs, i will add the new services for the Servers "D" & "E" with the IP address of Site B.
  This should be seen as well:
  !*************************** GLOBAL ***************************
  ip route 0.0.0.0 0.0.0.0 [IP FIREWALL]
  ip route SITE B [IP FIREWALL]
  !************************** SERVICE **************************
  service srvA
    ip address A.A.A.x
    port 8080
  service srvB
    ip address A.A.A.x+1
    port 8080
  service srvC
    ip address A.A.A.x+2
  port 8080
  service srvD
    ip address B.B.B.y
  port 8080
  service srvE
    ip address B.B.B.y+1
  port 8080
  I know that this practice is not the most desirable, in fact should use"Basic Global Server Load Balancing Site Redundancy Using the CSS with DNS", but I don't have much time to change the entire environment today, and in this first stage i have to begin with this poor but quick solution that i thought and i wanted to be validated if there is posibliidades this to work
  Within their experiences that they say? Will operate?
  Thanks in advance!
  Regards!
  Esteban =)

  Daniel!
  Sorry by delay!
  Thank you so much for you time for reply.
  You have given me a great help to this doubt!
  But..using "source group" let me know..
  I can´t undertand the really difference between NAT with ACls as you can see at this link: (http://www.cisco.com/en/US/products/hw/contnetw/ps789/products_tech_note09186a0080093dfc.shtml)
  and
  this other link, using NAT (from the piont 5), (http://www.cisco.com/en/US/products/hw/contnetw/ps789/products_configuration_example09186a0080093dff.shtml)
  where the NAT is configured under a method different from the previous one..
  So.. for this scenario described above, which would you recommend using? I would think that the second is the most indicated truth? What do you think?
  Thanks in advance again!!!
  Have nice day!
  Regards.
  Esteban.

• Max connections in Oracle 10g Express

  Hi,
  How much connections are possible in Oracle 10g Express ?

  I do the following test:
  I format the test PC, install the O.S. and install Oracle 10g Express and run the following code:
  package testedb;
  import java.sql.Connection;
  import java.sql.DriverManager;
  import java.sql.SQLException;
  import java.util.ArrayList;
  import java.util.List;
  public class TesteDB {
       * @param args
       public static void main(String[] args) {
            List<Connection> connections = new ArrayList<Connection>();
            try
       Class.forName ("oracle.jdbc.driver.OracleDriver");
       while(true)
            connections.add(DriverManager.getConnection("jdbc:oracle:thin:@albatroz:1521:XE", "system", "xxx"));
            //connections.add(DriverManager.getConnection("jdbc:oracle:thin:@albatroz:1521:MYDB", "system", "xxx"));
            System.out.println("connections: "+connections.size());
       catch (ClassNotFoundException e)
       System.out.println ("Could not load the driver");
       e.printStackTrace ();
       } catch (SQLException e) {
            System.out.println("----------------------------------------------------------");
                 System.out.println("Qtd of connections: "+connections.size());
                 System.out.println("----------------------------------------------------------");
                 e.printStackTrace();
  After the first test I format again the PC, install the O.S. and install Oracle 10g Standard and run the same code, changing only the database name.
  Well, I get the following results:
  - Oracle 10g Express: I get 19 connections;
  - Oracle 10g Standard: I get 181 connection;
  Final report:
  With the same hardware (1GB RAM) and O.S. (Windows XP Professional) test, the Oracle 10g Express has any restrictions at the question max connections.
  Message was edited by: Hugo Haas
  Hugo Haas

• Multihoming with CSS 11500?

  Can I do load balancing between two internet ISP's (multihoming), from Internet to Web Server (inside traffic) and from Internal network to Internet (outside traffic) with a Cisco CSS 11500?

  you can connect the CSS to multiple ISP.
  With the ECMP feature, the CSS will forward the response back to where the connection came from.
  However, for outgoing connection, the CSS can't do loadbalancing over multiple ISP.
  Regards,
  Gilles.

• Sorry Server for CSS 11500

  Hi,
  I have a question regarding sorry server configuration on the CSS 11500 series.
  Is there a way for the sorry server to ignore the URL path and always send the user traffic to the "root" page (e.g. index.html) of the sorry server web server?
  The problem I have is the redirection of the "root" page (url "/") that is configured for the normal traffic is causing the sorry page not to work since the URL path ("/psp/CUSTOMER1/?cmd=login") does not exist on the sorry page web server:
  service Sorry-Server
    protocol tcp
    port 8000
    keepalive type tcp
    ip address 192.168.2.254
    active
  service server1
    ip address 192.168.2.101
    protocol tcp
    keepalive type tcp
    port 8080
    active
  service server2
    ip address 192.168.2.102
    protocol tcp
    keepalive type tcp
    port 8080
    active
  owner Customer1
    content Content1
      vip address 192.168.1.101
      port 80
      protocol tcp
      url "/*"
      balance aca
      advanced-balance arrowpoint-cookie
      flow-timeout-multiplier 6
      add service server1
      add service server2
      primarySorryServer Sorry-Server
      active
    content Content1-Redirect
      redirect "/psp/CUSTOMER1/?cmd=login"
      vip address 192.168.1.101
      port 80
      protocol tcp
      url "/"
      active
  Thanks in advance for your help!
  Best regards,
  Harry

  Hi again,
  During a maintenance window I made the following change and that made things a bit better:
  service Sorry-Server
    type redirect
    keepalive type none
    redirect-string "192.168.2.254:8000"
    active
  However, since the redirect string points to a private address, Internet users are not able to access the URL.
  As a work-around I sent the redirect to a new content rule with a public address and then configured a second sorry page server:
  service Sorry-Server
    type redirect
    keepalive type none
    redirect-string "sorry.example.com:8000"
    active
  service Sorry-Server-2
    ip address 192.168.2.254
    protocol tcp
    port 8000
    keepalive type tcp
    active
  owner Customer1
    content Content2
      vip address x.x.x.x
      add service Sorry-Server-2
      port 8000
      protocol tcp
      active
  Is there a better way to do this?
  Best regards,
  Harry

• How many max connections opened do you have?

  Hello!
  I've read so many answers to these questions that, i don't really know what is the correct one. So, i would like to know what do you have. Here they are:
  1- How many max connections per torrent do you have set up?
  2- How many max opened connections do you have in mldonkey (or similar)?
  Thanks!
  Last edited by dienadel (2007-03-08 08:25:36)

  AFAIK it's arround (total connections):
  - <5 for RTC
  - <100 for slow ADSL
  - <500 for medium ADSL
  - ~1000 for high-speed ADSL (and max on Windows lol) ; went up to over 1500, without positive change.
  I use rtorrent & have a limit of <100 connections per torrent (4 leechers max per torrent so they get something)

• How to set min & max connections for  MSSQLconnection pool

  Hi,
  I want to set minconnection, maxconnection, idletimeout initial limit for the pool
  I have got a MSSQL database connection using following java code.
  // MSSQL DbConnection Code
  import java.sql.*;
  public class MsSqlDataSource
  public static void main(String arr[])
  Connection con = null;
  ResultSet rs = null;
  try{
  com.microsoft.sqlserver.jdbc.SQLServerDataSource ds = new com.microsoft.sqlserver.jdbc.SQLServerDataSource();
  ds.setServerName("10.50.50.51");
  ds.setPortNumber(1711);
  ds.setDatabaseName("test");
  ds.setUser("starhome");
  ds.setPassword("starhome");
  con = ds.getConnection();
  }catch(Exception e){}
  }In oracle i have passed min and max number of connection properties through setConnectionCacheProperties method.
  //Connection Pooling using Oracle Data Source:
  m_connSource = new OracleDataSource();
  m_connSource.setDriverType("thin");
  m_connSource.setServerName(m_host);
  m_connSource.setNetworkProtocol("tcp");
  m_connSource.setDatabaseName(m_db);
  m_connSource.setPortNumber(m_port);
  m_connSource.setUser(m_user);
  m_connSource.setPassword(m_password);
  // Enable caching. m_connSource.setConnectionCachingEnabled(true);
  java.util.Properties prop = new java.util.Properties();
  prop.setProperty("MinLimit", m_minConnections);
  prop.setProperty("MaxLimit", m_maxConnections);
  prop.setProperty("InitialLimit", m_initialConnections);
  prop.setProperty("InactivityTimeout", m_inactivityTimeout);
  prop.setProperty("AbandonedConnectionTimeout", m_abandonedTimeout);
  prop.setProperty("ConnectionWaitTimeout", m_connWaitTimeout);
  m_connSource.setConnectionCacheProperties(prop);I dont know how to pass min and max number of connection properties for SQLServerDataSource. Is there any method available to pass min and max number of connection properties for SQLServerDataSource.
  Iam using Tomcat. I found one way to set min and max connections for pool by doing changes in context.xml and web.xml using below url http://tomcat.apache.org/tomcat-4.1-doc/jndi-datasource-examples-howto.html
  I dont want to touch tomcat configuration files. I need to set connection pooling properties which is independent of application server.
  Please anybody give solution for this?
  Thanks,
  Prisha

  Hi,
  you need to define your database under the DB Admin tab. In the Schema objects node you'll find Sequence Implementations, and there you can definde min max values as well as caching and increments.
  Gerald

• WLAN: Max connections?

  Hi,
  I seem to be getting an error sometimes when trying to connect via WLAN: -
  Max connections exceeded...please try again. (something very similar)
  What's all this about? There's plenty of connections available on my WLAN router and I'm only using one browser connection on the phone, so why should this happen?
  Regards
  Jules.

  23-Jun-200608:36 AM
  jdub wrote:
  Hi,
  I seem to be getting an error sometimes when trying to connect via WLAN: -
  Max connections exceeded...please try again. (something very similar)
  What's all this about? There's plenty of connections available on my WLAN router and I'm only using one browser connection on the phone, so why should this happen?
  Regards
  Jules.
  I am experiencing the same problem on my N80 as described in the original post. I should also re-state that I only get the "Max. number of connections..." message when trying to connect to my wireless network. Other connection methods work just fine.
  I might add this problem only started after and upgrading my firmware to the internet edition. I had connected fine for more than one half a year previous. No ther changes have been made. Any input is welcome.
  Thanks!

• CSS 11500 url path rewrite and NAT

  Hi,
  We are evaluating a CSS 11500 and try to configure url path rewrite and NAT, but we have some problems.
  What we would like to do is the following:
  http://www.example.com/path1 -> http://host1:80
  http://www.example.com/path2 -> http://host1:8080
  http://www.example.com/path3 -> http://host2:80
  The address www.example.com is resolving to a valid internet address, whereas host1 and host2 resolves to private IP addresses.
  The client should always see the external url (e.g. http://www.example.com/path1/...) and the CSS should do the necessary translation.
  Any help would be very much appreciated!
  Regards,
  Harald

  Hello Experts, I'm new with this cisco stuff too(just got it 3 weeks ago), but here is some of my experience with cisco css 11501.
  First : Service ServerName, there is a port setting here, but from my experience, I think it is related with KeepAlive option, so, port is alternate way to know if the server alive or not.
  Second : When you send request to cisco css, the port option in content port will be the cisco css port to accept request, so, if you send a request to http://vip:8080/, all service must be in the same port too to balance the request, in this case, port 8080, if one service port 80, i'm sure the css will not hit the server.
  Third : To solve your problem...
  http://www.example.com/path1 -> http://host1:80 (ipA)
  http://www.example.com/path2 -> http://host1:80 (ipB)
  http://www.example.com/path3 -> http://host2:80
  if you are lazy to buy new nic, just set subinterface/ip alias on the host1, and make the webserver only bind to specific address, not to all interface...
  O yea, about your path1/path2/path3 -> /, hmm, i'm still asking in this forum about path changing cause until now, i haven't know how to do this, i know about apache rewrite module, and success do this, if only i know about this in cisco css too :-(
  I'm sorry if I make mistake, I'm just telling my experience...

• CSS 11500 booting only to Offline DM mode

  Hello,
  I setup a new CSS 11500 this morning, going through the steps of setting up the administrator password, IP address for the management console etc, but when continuing the CSS went straight to the offline DM menu. Now rebooting the unit it clears all the tests, loads the operational flash but continues to go straight to the DM menu regardless whether you press <y> or not at the prompt.
  I also tried connecting via telnet to the management console but get connection refused.
  Any ideas on why the CSS boots only to the DM menu?
  Thanks in advance,
  - Trevor

  Trevor,
  once if offdm, attached a laptop with FTP Server on it on the management port.
  Then from offdm, you can configure the CSS to boot from FTP server.
  Once the box is up and running again, make sure you have an image on disk.
  Finally, you don't need a PCMCIA flash and no you should no have received one.
  Regards,
  Gilles.

• CSS 11500 Responds for any Port

  Hopefully this is an easy question but I am having a heck of a time finding an answer.
  We have multiple CSS 11500 clusters.  We have found that on all of them, if you try to open a session on any port to an IP address on the backend of the CSS, the CSS will complete the SYN-ACK-ACK session with the client.  This happens regardless of whether there is something on that IP address or not.
  Example:
  Front                           Back
  10.1.1.0/24 --- CSS --- 10.2.2.0/24
  Coming from any IP, if I try to telnet to ANY IP on the 10.2.2.0 subnet (whether or not there is an actual server on that IP) on any port (whether or not that port is open or not), the CSS will complete the initial connection.  I have verified this using telnet to numerous ports and viewing the transaction in a packet capture.
  Is there any way to shut this off?  This is causing some licensing issues for our security folks that use a vulnerability scanner licensed on number of IP addresses.
  Thanks for any input!

  Thanks for your reply Marvin.
  We actually use ACLs already - primarily for purposes of allowing backend servers to reach load-balanced services on the CSS they sit behind or for reverse proxy services. 
  I have tried specifically blocking access to backend IP addresses that are not used but oddly enough the CSS still replies and opens the initial TCP session just like any other.
  I think I'm going to have to open a TAC case on this one.  If they can't answer it, I may be forced to put all of these behind firewalls - which is doable but not ideal.

• JDBC Connection pools and clusters (is max connection for entire cluster?)

  Hi,
  Quick question.
  When using JDBC connection pools in WAS 6.40 (SP13) in a clustered environment. Are the max connections the number
  a)Each application server can use
  b)The entire cluster can use
  Would believe a), but I'd like it confirmed from someoneelse

  Hi Dagfinn,
  your assumption is correct. Therefore, in a cluster environment you'd need to make sure the DB can open <i>Number of nodes X max connections</i>.