alexis perrier
2 posts
|
Topic: Brightbox Help /
limited number of mysql connections
My account has a max_user_connections of 10.
Somehow I have just had a “User ‘qameha’ has exceeded the ‘max_user_connections’ resource (current value: 10)” although there was only one user using the application (me).
I checked with Show processlist; which showed only 3 connections.
I guess my application might be opening too many connection for its own good at some point but I don’t know how to investigate this probable issue.
However, I have a feeling that this is an issue that will creep up on me at the worst of times and I would like to take preventive steps.
1) why are we allowed so few connections ? is there a way to increase the max_user_connections for my account ?
Mysql documentation talks about 150 default connection. Quote : “Beginning with MySQL 5.1.15, its default value is 151 to improve performance when MySQL is used with the Apache Web server. (Previously, the default was 100.)”
2) How can I prevent running out of connections before it happens ?
Thanks
Alexis
|
|
alexis perrier
2 posts
|
Topic: Brightbox Help /
unable to load iptables
Hi
I’m trying to define my own iptables. The brightbox firewall has been removed and all ports are now open.
I have a problem when I do
> sudo iptables-restore < /etc/iptables.test.rules
I always get the error message
iptables-restore: line 42 failed
line 42 corresponds to the COMMIT line. The COMMIT fails
The /etc/iptables.test.rules I use is shown below.
I got it from a reliable source and do not believe its a syntax problem.
Thanks for your help
Alexis
/etc/iptables.test.rules :
*filter
- Allows all loopback (lo0) traffic and drop all traffic to 127/8 that doesn’t use lo0
-A INPUT -i lo -j ACCEPT
-A INPUT -i ! lo -d 127.0.0.0/8 -j REJECT
- Accepts all established inbound connections
-A INPUT -m state —state ESTABLISHED,RELATED -j ACCEPT
- Allows all outbound traffic
- You can modify this to only allow certain traffic
-A OUTPUT -j ACCEPT
- Allows HTTP and HTTPS connections from anywhere (the normal ports for websites)
-A INPUT -p tcp —dport 80 -j ACCEPT
-A INPUT -p tcp —dport 443 -j ACCEPT
- Allows SSH connections
#
- THE -dport NUMBER IS THE SAME ONE YOU SET UP IN THE SSHD_CONFIG FILE
#
-A INPUT -p tcp -m state —state NEW —dport 22 -j ACCEPT
- Allow ping
-A INPUT -p icmp -m icmp —icmp-type 8 -j ACCEPT
- log iptables denied calls
-A INPUT -m limit —limit 5/min -j LOG —log-prefix "iptables denied: " —log-level 7
- Reject all other inbound – default deny unless explicitly allowed policy
-A INPUT -j REJECT
-A FORWARD -j REJECT
COMMIT
|
2 post(s) found