I'm running nginx server with php-fpm.
I'm using "c5d.xlarge" ec2 instance type to host my website.
c5d.xlarge = 4 vcpu & 8GB RAM.
If active connections go beyond 10k on my ELB, CPU Utilization goes beyond 60-70% on my all 15 servers.
php-fpm configuration:
pm = dynamic
pm.max_children = 65
pm.start_servers = 10
pm.min_spare_servers = 10
pm.max_spare_servers = 20
pm.max_requests = 600
nginx configuration:
user www-data;
worker_processes 4;
pid /var/run/nginx.pid;
events {
worker_connections 3072;
}
http {
##
# Basic Settings
##
charset utf-8;
sendfile on;
tcp_nopush on;
tcp_nodelay on;
server_tokens off;
log_not_found off;
types_hash_max_size 2048;
client_max_body_size 16M;
keepalive_timeout 70;
client_header_timeout 3000;
client_body_timeout 3000;
fastcgi_read_timeout 3000;
fastcgi_buffers 8 128k;
fastcgi_buffer_size 128k;
# MIME
include /etc/nginx/mime.types;
default_type application/octet-stream;
log_format main '$remote_addr - $remote_user [$time_local] "$request" '
'$status $body_bytes_sent "$http_referer" '
'"$http_user_agent" "$http_x_forwarded_for"';
access_log /home/ubuntu/apps/log/default/access.log main buffer=32k;
error_log /home/ubuntu/apps/log/default/error.log;
gzip on;
gzip_disable "MSIE [1-6]\.";
# Only allow proxy request with these headers to be gzipped.
gzip_proxied expired no-cache no-store private auth;
# Default is 6 (1<n<9), but 2 -- even 1 -- is enough. The higher it is, the
# more CPU cycles will be wasted.
gzip_comp_level 7;
gzip_min_length 20; # Default 20
gzip_types text/plain text/css application/json application/javascript application/x-javascript text/xml application/xml application/xml+rss text/javascript;
include /etc/nginx/conf.d/*.conf;
top command output:
Please suggest if these configurations are okay. I'm not too sure if this much cpu utilization for these many active connections is alright. I'll be really grateful if someone can guide me in setting up nginx and php-fpm for optimal performance.
If anymore information is required, please let me know.
Lets get started with
php-fpmThe dynamic process model keeps a bunch of workers waiting around for a request to come through. Meanwhile, these workers at utilizing CPU cycles and memory.
ondemandis the best choice for FPM process models as it scales out as needed. Before you say "well, the daemon is going to have tofork()the new child" which is also intensive, remember that this is not a very expensive operation with modern OS's and hardware.This is most likely completely unsustainable, unless your php
memory_limitis set at 100MB, which is never enough to run any kind of PHP process. Realize that if you're going to let FPM scale out to 65 workers, they all could potentially use UP tomemory_limit. Without the RAM to back it up, this setting value is a recipe for locking up a server.I won't comment on these as they are sane enough.
This value is meaningless in the
ondemandPM, but I will speak to it. What's the point of killing the worker after 600 requests? If your application is leaking that much memory that you need to reap it, you need to evaluate the application itself.On to
nginxWorker Processes should actually be set to
autoto allownginxto find the right balance. Typically, one is enough for most use cases, however.This is another potentially dangerous setting. Have you consulted
ulimit -nto see how many open files are allowed per process? How many cores are available on your system (grep -c processor /proc/cpuinfo)? Generally speaking, this value should be$CPU_CORES * ulimit, which in your case is probably2048, given your choice of EC2 instance.This is another setting where you're potentially going to to be burned! Do you really want to leave connections potentially hanging for nearly one hour while they wait for the timeout to be reached? Overzealous timeout values in applications can be a large resource drain on servers. Timeout values were designed to be right above the normal time that a particular event takes to occur, and not much more. Otherwise, what's the point of having a timeout at all? :)