000032633 - Performance issues and error in xinit.log with service_limit failure using RSA Via Lifecycle and Governance (L&G) on Red Hat appliances

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000032633
Applies ToRSA Product Set: Identity Management and Governance
RSA Product/Service Type: Appliance
Platform: Red Hat Linux
IssueThere is slow performance during heavy load (such as large reviews involving 1000+ reviewers) and severe system lag including the login page failing to fully load with only 50-75 simultaneous connections
The xinetd.log (usually located under /var/log directory) shows the following error: 
FAIL: https service_limit from=<server IP address>
CauseRed Hat documentation on TCP Wrappers and xinetd indicates that the instances entry sets the maximum number of requests xinetd can handle at once.  By default the L&G appliance is set to use the default number of instances, which is 30.
When the number of instances of the TCP wrapper is maxed out, the system would experience slowness/contention on the UI with the higher number of simultaneous connections.
ResolutionIncrease the number of instances in the /etc/xinetd.conf, by doubling or more the instances value.