Specific use of nginx keepalive

The default request header of the http1.1 protocol is to enable keepalive by default, as shown in the figure:

So what is keepalive? What is the function?

Keepalive is a mechanism in TCP that can detect dead connections. Its function is to keep the socket connection from being disconnected. It belongs to the TCP layer and not the application layer.

How does the TCP layer maintain a long connection?

Let's first look at the usage of keepalive: there are three parameters, open to the application layer

sk->keepalive_probes: number of probes, number of retries sk->keepalive_time: heartbeat interval of the probe, after how many seconds the TCP link starts the probe message without data packet transmission sk->keepalive_intvl: probe interval, the time interval between retries when no reply is received

Default configuration view:

[***@*** ~]$ cat /proc/sys/net/ipv4/tcp_keepalive_time
7200
[***@*** ~]$ cat /proc/sys/net/ipv4/tcp_keepalive_intvl
75
[***@*** ~]$ cat /proc/sys/net/ipv4/tcp_keepalive_probes
9

Directions:

int keepalive = 1; // Enable the keepalive attribute int keepidle = 60; // If there is no data exchange within 60 seconds, a detection is performed int keepinterval = 5; // The interval between sending packets during detection is 5 seconds int keepcount = 3; // The number of detection attempts. If a response is received after the first detection packet, the next two detection packets will not be sent. And clear the count setsockopt(rs, SOL_SOCKET, SO_KEEPALIVE, (void *)&keepalive, sizeof(keepalive));
setsockopt(rs, SOL_TCP, TCP_KEEPIDLE, (void*)&keepidle, sizeof(keepidle));
setsockopt(rs, SOL_TCP, TCP_KEEPINTVL, (void *)&keepinterval, sizeof(keepinterval));
setsockopt(rs, SOL_TCP, TCP_KEEPCNT, (void *)&keepcount, sizeof(keepcount));

After the application layer is set up in this way, the default configuration will be overwritten and the manually set configuration will be used.

For an established TCP connection. If there is no data packet transmission between the two parties within the keepalive_time period, the end with the keepalive function enabled will send a keepalive data heartbeat packet. If no response is received, the packet will be sent again every keepalive_intvl time, and keepalive_probes times will be sent. If no response is received, a rst packet is sent to close the connection. If a response is received, the timer is cleared.

Capture packet to verify the content of TCP heartbeat packet

Continue to analyze the heartbeat packets sent and replied by keepalive based on the captured packets:

The source code of the TCP header structure is:

typedef struct _TCP_HEADER
{
 short m_sSourPort; // Source port number 16bit
 short m_sDestPort; // destination port number 16bit
 unsigned int m_uiSequNum; //req field sequence number 32bit
 unsigned int m_uiAcknowledgeNum; //ack field confirmation number 32bit
 short m_sHeaderLenAndFlag; // The first 4 bits: TCP header length; the middle 6 bits: reserved; the last 6 bits: flag short m_sWindowSize; //win field window size 16 bits
 short m_sCheckSum; // Checksum 16bit
 short m_surgentPointer; // Emergency data offset 16 bits
}__attribute__((packed))TCP_HEADER, *PTCP_HEADER;

Look at the content of the heartbeat packet sent:

0000 d4 6d 50 f5 02 7f f4 5c 89 cb 35 29 08 00 // MAC header 14 bytes:
                         45 00 // IP header 20 bytes:
0010 00 28 10 f4 00 00 40 06 5b dd ac 19 42 76 0a b3
0020 14 bd
      e4 4a 1f 7c 32 7e 7a cb 4c bc 55 08 50 10 // TCP header 20 bytes 0030 10 00 3f 00 00 00
//Analyze the TCP header content e4 4a //The source port number 16bit decimal is: 58442 
1f 7c //Destination port number 16bit decimal: 8060 
32 7e 7a cb // The 32-bit serial number of the req field is in decimal: 
4c bc 55 08 // ack field confirmation number 32 bits 
5 // First 4 bits: TCP header length 5*4 = 20 bytes, no problem 0 10 /// Middle 6 bits: reserved; last 6 bits: flag bit 10 represents the 5th bit from the end is 1, marking the change of TCP packet to ACK confirmation packet 0030 10 00 3f 00 00 00

Continue to look at the content of the replied heartbeat packet:

0000 f4 5c 89 cb 35 29 d4 6d 50 f5 02 7f 08 00 45 00 
0010 00 34 47 28 40 00 36 06 ef 9c 0a b3 14 bd ac 19 
0020 42 76 // The previous data is not interpreted 1f 7c
e4 4a
4c bc 55 08
32 7e 7a cc
8 // The length of the TCP header is 8 * 4 = 32. In addition to the header, there are 12 bytes of option data. 0 10 // The middle 6 bits are reserved; the last 6 bits are flag bits. 10 represents the 5th bit from the end is 1, indicating that the TCP packet is an ACK confirmation packet. 0030 01 3f // The win field window size is 16 bits.
4e 0d // Checksum 16bit
00 00 // Emergency data offset 16 bits
01 01 08 0a 00 59 be 1c 39 13 
0040 cf 12 // Option data 12 bytes

As can be seen from the above, the heartbeat packet of TCP to maintain a long connection is that the browser first sends an ACK packet to the server, and then the server replies with an ACK packet with option data

How does nginx handle keepalive requests and what does it do?

The first thing to do is to determine the version: when the http protocol version is lower than 1.1, the keepalive of the link is set to 0
if (r->http_version < NGX_HTTP_VERSION_11) {
  r->keepalive = 0;
} 
In the ngx_http_process_connection function, if ngx_http_request_t has keep-alive, mark the link if (ngx_strcasestrn(h->value.data, "keep-alive", 10 - 1)) {
  r->headers_in.connection_type = NGX_HTTP_CONNECTION_KEEP_ALIVE;
}
In the ngx_http_handler function, r->headers_in.connection_type is judged and r->keepalive is assigned a value of 1
  switch (r->headers_in.connection_type) {
  case NGX_HTTP_CONNECTION_KEEP_ALIVE:
    r->keepalive = 1;
    break;
  }
In the ngx_configure_listening_sockets function, when keepalive is 1, KEEPALIVE is enabled for the connection. After that, the underlying TCP layer will detect dead connections for the connection fd, maintain a long connection, and not disconnect.
if (ls[i].keepalive) {
  value = (ls[i].keepalive == 1) ? 1 : 0;

  if (setsockopt(ls[i].fd, SOL_SOCKET, SO_KEEPALIVE,//Enable keepalive function (const void *) &value, sizeof(int))
    == -1)
  
}

When will the nginx long connection be disconnected?

After nginx turns on keepalive via setsockopt(ls[i].fd, SOL_SOCKET, SO_KEEPALIVE,(const void *) &value, sizeof(int)), it will always maintain a long connection with the client. This will lead to a serious problem. The number of connections that each woker can maintain is limited (ep = epoll_create(cycle->connection_n / 2); cycle->connection_n / 2 is the upper limit of the fd that epoll can manage). In this way, the number of connections will be exhausted quickly. What should nginx do at this time?

To find the answer, let's look at two nginx configuration parameters for keeoalive.

keepalive_timeout

keepalive_timeout timeout [header_timeout];

The first parameter: sets the timeout value for the keep-alive client connection to remain open on the server side (75s by default); a value of 0 disables the keep-alive client connection;

The second parameter: optional, set a value "Keep-Alive: timeout=time" in the response header field; usually it does not need to be set;

Note: keepalive_timeout defaults to 75s

keepalive_requests

The keepalive_requests directive is used to set the maximum number of requests that can be served on a keep-alive connection. When the maximum number of requests is reached, the connection is closed. A value of 0 will also disable keep-alive client connections. The default is 100.
The answer is obvious. Use keepalive_timeout keepalive_requests to manage long connections.

When a TCP connection survives for longer than keepalive_timeout, it will be closed. Nginx implements this through a timer.
When the maximum number of love letters of a TCP connection exceeds keepalive_requests, it will also be closed

These two mechanisms ensure that the number of connections for each worker does not exceed the number that epoll can manage.

The above is the full content of this article. I hope it will be helpful for everyone’s study. I also hope that everyone will support 123WORDPRESS.COM.

You may also be interested in:

Detailed explanation of nginx+keepalived high availability master-slave configuration
Detailed explanation of Keepalived+Nginx to achieve high availability (HA)
Nginx+Keepalived realizes hot standby of dual machines
How to combine keepalived with nginx to achieve high availability of nginx
Configuration method of keepalived dual-machine hot standby nginx
Keepalived implements high availability of nginx
Detailed explanation of HTTP keepalive configuration in Nginx

<<: Tutorial on installing MySQL 5.6 on CentOS 6.5

>>: Layim in javascript to find friends and groups

Specific use of nginx keepalive

Pure CSS to achieve input box placeholder animation and input verification

jQuery implements clicking left and right buttons to switch pictures

How to implement mask layer in HTML How to use mask layer in HTML

In-depth analysis of MySQL indexes

Some common advanced SQL statements in MySQL

A brief discussion on the solution to the problem of native page compatibility with IE9

CSS+HTML to realize the top navigation bar function

Design theory: people-oriented design concept

How to use nodejs to write a data table entity class generation tool for C#

Solve the problem of Tomcat10 Catalina log garbled characters

Recommend

How to construct a table index in MySQL

VUE+Canvas implements the sample code of the desktop pinball brick-breaking game

JavaScript implements click toggle function

How to build a DHCP server in Linux

CentOS7 enables MySQL8 master-slave backup and daily scheduled full backup (recommended)

Linux kernel device driver memory management notes

MySQL explain obtains query instruction information principle and example

Install Python 3.6 on Linux and avoid pitfalls

CSS writing format, detailed explanation of the basic structure of a mobile page

JavaScript to achieve time range effect

HTML Tutorial: DOCTYPE Abbreviation

Common attacks on web front-ends and ways to prevent them

Linux operation and maintenance basic process management real-time monitoring and control

Tutorial on building file sharing service Samba under CentOS6.5

Detailed explanation of MySQL Innodb storage structure and storage of Null values