[stunnel-users] Memory problems
Peter Griffin
griffinpet at gmail.com
Fri Feb 5 18:15:30 CET 2010
Hi,
I'm using stunnel 4.22 with OpenSSL 0.9.7m - I am using 4.22 because of the
xforwarded-for patch and 4.27 is not supported.
I am running stunnel in standalone mode on a P4 3.2Ghz with 1Gb of Ram.
When I start haproxy & stunnel after a reboot, free memory starts at about
750Mb then slowly degrades to about 45Mb. After 8 more hours or so of
operation our site was completely unbrowsable. I checked our firewall for
unusual traffic, and there were none.
Running top does not indicate any processes which are consuming all that
memory and that is what I find weid. Only a reboot frees up the memory.
Should I be running stunnel on more Ram?
stunnel -v output:
[root at lb1 ~]# stunnel -version
stunnel 4.22 on x86_64-unknown-linux-gnu with OpenSSL 0.9.7m 23 Feb 2007
Threading:PTHREAD SSL:ENGINE Sockets:POLL,IPv6
Global options
debug = 5
pid = /usr/local/var/run/stunnel/stunnel.pid
RNDbytes = 64
RNDfile = /dev/urandom
RNDoverwrite = yes
Service-level options
cert = /usr/local/etc/stunnel/stunnel.pem
ciphers = ALL:!aNULL:!eNULL+RC4:@STRENGTH
key = /usr/local/etc/stunnel/stunnel.pem
session = 300 seconds
stack = 65536 bytes
sslVersion = SSLv3 for client, all for server
TIMEOUTbusy = 300 seconds
TIMEOUTclose = 60 seconds
TIMEOUTconnect = 10 seconds
TIMEOUTidle = 43200 seconds
verify = none
stunnel.conf:
#setuid=stunnel
#setgid=proxy
#debug = 3
#output = /var/log/stunnel.log
socket=l:TCP_NODELAY=1
socket=r:TCP_NODELAY=1
[https]
accept=10.0.1.50:443
connect=10.0.1.50:80
TIMEOUTclose=0
xforwardedfor=yes
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20100205/743773e6/attachment.html>
More information about the stunnel-users
mailing list