Ping a Specific Port

Question

Alexander Gladysh

Asked: 2010-12-14 13:24:32 +0800 CST2010-12-14 13:24:32 +0800 CST 2010-12-14 13:24:32 +0800 CST

Munin's fw_conntrack reports strange number of sockets in TIME_WAIT

772

Ubuntu Server 10.04.1 x86
Munin 1.4.4

Here is what Munin tells me about connections through firewall on my server:

TIME_WAIT

Here is what netstat -n has to say about this:

$ netstat -an|awk '/tcp/ {print $6}'|sort|uniq -c
      2 CLOSE_WAIT
      1 CLOSING
   3720 ESTABLISHED
     34 FIN_WAIT1
     21 FIN_WAIT2
     13 LAST_ACK
      6 LISTEN
      4 SYN_RECV
    394 TIME_WAIT

According to netstat, 10% of sockets are in TIME_WAIT; 75% or more, according to Munin.

That is strange. Who is right?

More details about configuration etc. here: How to reduce number of sockets in TIME_WAIT?

1 Answers

Voted

Kvisle · Answer 1 · 2011-11-06T16:08:14+08:00

Best Answer

Kvisle

2011-11-06T16:08:14+08:002011-11-06T16:08:14+08:00

netstat doesn't show connections that are passing through the server as a gateway / firewall.

The munin-plugin parses /proc/net/ip_conntrack, which contains a lot of information not visible in netstat.

The answer; Both are right, but they answer different questions. Netstat talks about connections to and from the server itself. Conntrack provides information about traffic passing the server, so it can make sure to do address translation and so forth correctly.

5

Munin's fw_conntrack reports strange number of sockets in TIME_WAIT

Ping a Specific Port

How do I tell Git for Windows where to find my private RSA key?

How do you restart php-fpm?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Resolve host name from IP address

How can I sort du -h output by size

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?