bind 9.18.5 doh stop service: general: info: Accepting TCP connection failed: quota reached
Summary
When running for more than a month, the service suddenly stopped
There are a lot of following errors
16-Oct-2022 05:29:48.090 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:30:03.814 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:30:30.818 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:30:40.826 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:30:42.298 lame-servers: info: timed out resolving 'inforec-img.nos-eastchina1.126.net/A/IN': 59.37.133.11#5533
16-Oct-2022 05:30:44.902 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:32:52.990 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:32:53.442 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:32:57.986 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:33:03.266 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:33:27.742 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:33:58.866 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:34:08.878 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:34:27.210 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:34:37.222 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:34:47.218 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:34:48.510 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:35:03.218 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:35:08.442 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:35:38.642 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:35:40.498 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:35:46.622 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:36:28.166 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:36:40.550 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 05:36:54.950 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 10:26:06.354 general: info: Accepting TCP connection failed: socket is not connected
16-Oct-2022 10:26:17.538 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 10:26:18.206 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 10:26:23.090 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 10:26:28.090 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 10:26:31.062 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 10:26:56.790 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 10:27:45.890 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 10:27:58.690 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 10:28:29.074 general: info: Accepting TCP connection failed: quota reached
16-Oct-2022 10:28:30.934 general: info: Accepting TCP connection failed: quota reached
BIND version used
BIND 9.18.5 (Stable Release) <id:>
running on Linux x86_64 5.10.130-118.517.amzn2.x86_64 #1 SMP Wed Jul 13 16:51:52 UTC 2022
built by make with '--enable-dnstap' '--enable-epoll' '--with-json-c' '--with-libnghttp2' '--enable-doh' '--prefix=/data/named' 'PKG_CONFIG_PATH=:/usr/local/lib/pkgconfig'
compiled by GCC 7.3.1 20180712 (Red Hat 7.3.1-15)
compiled with OpenSSL version: OpenSSL 1.1.1q 5 Jul 2022
linked to OpenSSL version: OpenSSL 1.1.1q 5 Jul 2022
compiled with libuv version: 1.39.0
linked to libuv version: 1.39.0
compiled with libnghttp2 version: 1.41.0
linked to libnghttp2 version: 1.41.0
compiled with json-c version: 0.11
linked to json-c version: 0.11
compiled with zlib version: 1.2.7
linked to zlib version: 1.2.7
compiled with protobuf-c version: 1.0.2
linked to protobuf-c version: 1.0.2
threads support is enabled
default paths:
named configuration: /data/named/etc/named.conf
rndc configuration: /data/named/etc/rndc.conf
DNSSEC root key: /data/named/etc/bind.keys
nsupdate session key: /data/named/var/run/named/session.key
named PID file: /data/named/var/run/named/named.pid
named lock file: /data/named/var/run/named/named.lock
Steps to reproduce
run for a month!
What is the current bug behavior?
stopped for service. Doh requests no longer respond
What is the expected correct behavior?
run smoothly
Relevant configuration files
tls test-tls {
key-file "/ssl_cert/star_net.key";
cert-file "/ssl_cert/star_net.pem";
dhparam-file "/ssl_cert/dhparam.pem";
ciphers "HIGH:!kRSA:!aNULL:!eNULL:!RC4:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!SHA1:!SHA256:!SHA384";
prefer-server-ciphers yes;
session-tickets no;
};
http local {
endpoints { "/dns-query"; };
};
options {
#listen-on port 53 { any; };
listen-on tls test-tls http local { any; };
listen-on-v6 { none; };
directory "/var/named/";
dump-file "/var/named/data/cache_dump.db";
session-keyfile "/var/named/run/session.key";
bindkeys-file "/etc/bind.keys";
key-directory "/etc";
version none;
notify no;
servfail-ttl 30;
allow-query { any; };
allow-query-cache { any; };
forward first;
hostname none;
max-cache-size 12g;
recursion yes;
querylog no;
clients-per-query 400;
max-clients-per-query 2000;
};