Busy BIND + 5.2.1 = UDP Packet Loss

Leo Bicknell bicknell at ufp.org
Wed Oct 27 07:14:20 PDT 2004 

I recently upgraded a fairly busy nameserver to FreeBSD 5.2.1, and
I'm seeing packet loss from time to time on the box.  I've done
some digging, and the box seems to be dropping UDP packets.  Netstat
output:

udp:
        177604011 datagrams received
        0 with incomplete header
        7 with bad data length field
        2735233 with bad checksum
        83753 with no checksum
        205540 dropped due to no socket
        1917 broadcast/multicast datagrams dropped due to no socket
        10627437 dropped due to full socket buffers
        0 not for hashed pcb
        164033877 delivered
        169793422 datagrams output

The "dropped due to full socket buffers" seems to be the issue.  I
am also concerned by the number of packets with bad checksums, but
I have no previous data point.

I am seeing loss with DNS, but also with ping and given the few pauses
in my ssh sessions with TCP as well.  I don't see anything remarkable
with the TCP or ICMP statistics.  I don't think there's anything wrong
in MBUF land, statistics here for reference:

% netstat -m
mbuf usage:
        GEN cache:      0/256 (in use/in pool)
        CPU #0 cache:   335/672 (in use/in pool)
        Total:          335/928 (in use/in pool)
        Mbuf cache high watermark: 512
        Maximum possible: 51200
        Allocated mbuf types:
          291 mbufs allocated to data
          14 mbufs allocated to ancillary data
          16 mbufs allocated to fragment reassembly queue headers
          14 mbufs allocated to socket names and addresses
        1% of mbuf map consumed
mbuf cluster usage:
        GEN cache:      0/152 (in use/in pool)
        CPU #0 cache:   289/400 (in use/in pool)
        Total:          289/552 (in use/in pool)
        Cluster cache high watermark: 128
        Maximum possible: 25600
        2% of cluster map consumed
1336 KBytes of wired memory reserved (49% in use)
0 requests for memory denied
0 requests for memory delayed
0 calls to protocol drain routines

The only other thing I found of interest was some interrupt drops:

% sysctl -a | grep drops
net.inet.ip.intr_queue_drops: 13981

So, given the traffic profile (nameserver, heavy UDP) and the info
here can someone help point me in the right direction?  I'm not sure
where to go from here?

-- 
       Leo Bicknell - bicknell at ufp.org - CCIE 3440
        PGP keys at http://www.ufp.org/~bicknell/
Read TMBG List - tmbg-list-request at tmbg.org, www.tmbg.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-hackers/attachments/20041027/f57b6542/attachment.bin

More information about the freebsd-hackers mailing list