Virtual server using a TCP profile with a high idle timeout-f5-all

Virtual server using a TCP profile with a high idle timeout-f5-all

Vendor: f5

OS: all

Description:
Having very long TCP idle timeouts for virtual servers could make the load balancer keep too many connections open, which in turn could potentially cause memory exhaustion. indeni will alert when the idle timeout appears too high.

Remediation Steps:
Investigate why the high idle timeout is being used and lower it if possible.

How does this work?
This alert logs into the F5 through SSH and retrieves a list of tcp profiles and virtual servers and finds if any tcp profiles with long timeouts has been used.

Why is this important?
Having very long tcp idle timeouts for virtual servers could make the load balancer keep too many connections open, which in turn could potentially cause memory exhaustion.

Without Indeni how would you find this?
Log into the device through SSH. Enter TMSH and issue the command “list ltm profile tcp idle-timeout;list ltm virtual profiles”. Look through each tcp profile definition for the use idle timeouts equal to, or over 1800 seconds and then match that to the profile use of each virtual server.

f5-tmsh-list-ltm-profile-tcp-idle-timeout-list-ltm-virtual-profiles

name: f5-tmsh-list-ltm-profile-tcp-idle-timeout-list-ltm-virtual-profiles
description: Find use of tcp profiles with too high timeout
type: monitoring
monitoring_interval: 60 minutes
requires:
    vendor: f5
    product: load-balancer
    shell: bash
comments:
    f5-virtualserver-tcp-profile-idle-timeout:
        why: |
            Having very long tcp idle timeouts for virtual servers could make the load balancer keep too many connections open, which in turn could potentially cause memory exhaustion.
        how: |
            This alert logs into the F5 through SSH and retrieves a list of tcp profiles and virtual servers and finds if any tcp profiles with long timeouts has been used.
        can-with-snmp: false
        can-with-syslog: false
steps:
-   run:
        type: SSH
        command: tmsh -q -c "list ltm profile tcp idle-timeout;list ltm virtual profiles"
    parse:
        type: AWK
        file: tmsh-list-ltm-profile-tcp-idle-timeout-list-ltm-virtual-profiles.parser.1.awk

f5_high_idle_timeout

Failed to fetch the data: https://bitbucket.org/indeni/indeni-knowledge/src/master/rules/templatebased/f5/f5_high_idle_timeout.scala