What Should I Do If My ECS Fails to Access a Server on the Public Network Through a Public NAT Gateway?
TCP connection may fail when an ECS accesses a server on the public network through an SNAT rule. Perform the following steps to locate the fault cause:
- Run the following command to check whether tcp_tw_recycle is enabled on the remote server:
sysctl -a|grep tcp_tw_recycle
If tcp_tw_recycle is set to 1, tcp_tw_recycle is enabled.
- Run the following command to check the number of lost packets of the remote server:
cat /proc/net/netstat | awk '/TcpExt/ { print $21,$22 }'
If ListenDrops is not set to 0, packet loss occurs, that is, the network is faulty.
Troubleshooting
Method 1: Modifying the kernel parameter of the remote server
- Run the following command to temporarily modify the parameters (the modification becomes invalid after the server is restarted):
- Perform the following operations to permanently modify the parameters:
Method 2: Modifying the kernel parameter of the local client
- To temporarily modify parameters (the settings become invalid after the local client is restarted), configure the parameter as follows:
- Perform the following operations to permanently modify the parameters:
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot