Under crawler bursts, load goes extremely high. What’s interesting is that main domains (separate vhosts) remain fast, while subdomains routed through the rewrite layer become intermittent or time out.
Apache ML feedback suggests this is expected behavior with prefork and heavy workers, but I’m curious if anyone has seen similar patterns and found mitigation strategies short of a full stack rewrite.
Any real-world experience appreciated.
Bender•1h ago
I also made sure all uses of a temp space were in tmpfs. I also maxed out all the /etc/security/limits.conf now set in systemd unit files limits and sysctl file limits to get them out of the way. Spikes of traffic can very briefly hit these limits and then everything just gets stuck and one has to wait for http and socket keep-alive timeouts. Oh right, and I also shortened http and socket keep-alive timeouts. If there are any proxy connections I used the same IP even if localhost many times on different ports to avoid port depletion time-wait assassination.
Probably the most important would be to share your rewrite rules on serverfault.com but one should expect some elitist a-hole responses and maybe one good genuine response. There may still be a few rewrite experts there. That would be the biggest gain.
If safe to do so, using 301 vs 302 can avoid some repeat hits if that is how you are redirecting.
I also kept an eye on ipcs -a to see if the semaphore counts were high or close to limits in sysctl.conf as apache uses or used this for sharing between the child processes.
Sometimes the problem can be just beyond apache and in socket timeouts due to time-wait exaustion but that would be obvious in dmesg and netstat -aeenp.
If the rewrite rules depend on DNS resolution then having a local instance of Unbound and increasing the min-ttl can help.
I hate to also suggest this but explain your load issue to several different AI's and paste your rewrite rules and ask for them to be optimized but dont get hopes up. They might turn your server into a bowl of petunias. Back everything up.
It's been a long time so I am trying to remember all the things I tried. These days if I have a lot of rewrites I do that in HAProxy or NGinx in maps but that's a bigger topic.
I might remember more tomorrow.