Skip to content

Commit 9588da9

Browse files
christiankuhtzchristiankuhtz
authored
Tweak
1 parent 41c6f26 commit 9588da9

File tree

1 file changed

+3
-2
lines changed

1 file changed

+3
-2
lines changed

articles/virtual-network/troubleshoot-nat.md

Lines changed: 3 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -12,7 +12,7 @@ ms.devlang: na
1212
ms.topic: overview
1313
ms.tgt_pltfrm: na
1414
ms.workload: infrastructure-services
15-
ms.date: 03/05/2020
15+
ms.date: 03/14/2020
1616
ms.author: allensu
1717
---
1818

@@ -51,7 +51,8 @@ Always take advantage of connection reuse and connection pooling whenever possib
5151
_**Solution:**_ Use appropriate patterns and best practices
5252

5353
- Atomic requests (one request per connection) are a poor design choice. Such anti-pattern limits scale, reduces performance, and decreases reliability. Instead, reuse HTTP/S connections to reduce the numbers of connections and associated SNAT ports. The application scale will increase and performance improve due to reduced handshakes, overhead, and cryptographic operation cost when using TLS.
54-
- DNS can introduce many individual flows at volume when the client is not caching the DNS resolvers result. Use caching. - - UDP flows (for example DNS lookups) allocate SNAT ports for the duration of the idle timeout. The longer the idle timeout, the higher the pressure on SNAT ports. Use short idle timeout (for example 4 minutes).
54+
- DNS can introduce many individual flows at volume when the client is not caching the DNS resolvers result. Use caching.
55+
- UDP flows (for example DNS lookups) allocate SNAT ports for the duration of the idle timeout. The longer the idle timeout, the higher the pressure on SNAT ports. Use short idle timeout (for example 4 minutes).
5556
- Use connection pools to shape your connection volume.
5657
- Never silently abandon a TCP flow and rely on TCP timers to clean up flow. This will leave state allocated at intermediate systems and endpoints, and make ports unavailable for other connections. This can trigger application failures and SNAT exhaustion.
5758
- TCP close related timer values should not be changed without expert knowledge of impact. While TCP will recover, your application performance can be negatively impacted when the endpoints of a connection have mismatched expectations. The desire to change timers is usually a sign of an underlying design problem. Review following recommendations.

0 commit comments

Comments
 (0)