Bug 2064586 - Ingress Operator is not closing TCP connections.
Summary: Ingress Operator is not closing TCP connections.
Product: OpenShift Container Platform
Classification: Red Hat
Component: Networking
Version: 4.7
Assignee: Andrew McDermott
QA Contact: Shudi Li
Reported: 2022-03-16 08:26 UTC by OpenShift BugZilla Robot
Modified: 2022-08-04 22:35 UTC (History)
6 users (show)

Doc Type: Bug Fix
Doc Text:
Cause: Ingress Operator performs health checks against the ingress canary route. Once the health check is done Ingress Operator doesn't close the TCP Connection to the load balancer (LB) because keepalives are enabled on the connection. While performing the next health check a new connection is established to the LB instead of using the existing connection. Consequence: This causes the number connection to build upon the LB, overtime exhausting the number of connections on the LB. Fix: Disable keepalives when connecting to the canary route. Result: A new connection is made and closed each time the canary probe is run. With keepalives disabled there is no longer an accumulation of ESTABLISHED connections.
Last Closed: 2022-03-29 07:16:24 UTC
Comment 1 Miciah Dashiel Butler Masters 2022-03-16 14:24:31 UTC
Doc text is copied and pasted from bug 2063283.

Comment 8 errata-xmlrpc 2022-03-29 07:16:24 UTC
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (OpenShift Container Platform 4.9.26 bug fix update), and where to find the updated
files, follow the link below.
files, follow the link below.

If the solution does not work for you, open a new bug report.


Note You need to log in before you can comment on or make changes to this bug.