Skip to content

Commit e1951df

Browse files
Merge pull request #278016 from thisisanniefang/patch-71
Update load-balancer-outbound-connections.md
2 parents daf7e3e + 92f6ba6 commit e1951df

File tree

1 file changed

+11
-3
lines changed

1 file changed

+11
-3
lines changed

articles/load-balancer/load-balancer-outbound-connections.md

Lines changed: 11 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -150,11 +150,19 @@ For more information about connection pooling with Azure App Service, see [Troub
150150

151151
New outbound connections to a destination IP fail when port exhaustion occurs. Connections succeed when a port becomes available. This exhaustion occurs when the 64,000 ports from an IP address are spread thin across many backend instances. For guidance on mitigation of SNAT port exhaustion, see the [troubleshooting guide](./troubleshoot-outbound-connection.md).
152152

153-
For TCP connections, the load balancer uses a single SNAT port for every destination IP and port. This multiuse enables multiple connections to the same destination IP with the same SNAT port. This multiuse is limited if the connection isn't to different destination ports.
153+
### Port reuse
154+
For TCP connections, the load balancer uses a single SNAT port for every destination IP and port. For connections to the same destination IP, a single SNAT port can be reused as long as the destination port differs. Reuse is not possible when there already exists a connection to the same destination IP and port.
154155

155-
For UDP connections, the load balancer uses a **port-restricted cone NAT** algorithm, which consumes one SNAT port per destination IP whatever the destination port.
156+
For UDP connections, the load balancer uses a **port-restricted cone NAT** algorithm, which consumes one SNAT port per destination IP, regardless of the destination port.
156157

157-
A port is reused for an unlimited number of connections. The port is only reused if the destination IP or port is different.
158+
Individual ports can be reused for an unlimited number of connections where reuse is permitted (when the destination IP or port is different).
159+
160+
In the example in the following table, a backend instance with private IP 10.0.0.1 is making TCP connections to destination IPs 23.53.254.142 and 26.108.254.155, while the load balancer is configured with frontend IP address 192.0.2.0. Because the destination IPs are different, the same SNAT port can be reused for multiple connections.
161+
162+
| Flow | Source tuple | Source tuple after SNAT | Destination tuple |
163+
| --- | --- | --- | --- |
164+
| 1 | 10.0.0.1:80 | 192.0.2.0:1 | 23.53.254.142:80 |
165+
| 2 | 10.0.0.1:80 | 192.0.2.0:1 | 26.108.254.155:80 |
158166

159167
## Constraints
160168

0 commit comments

Comments
 (0)