Large Alias Causing CPU spikes and ping latency

Started by CanIKipThis, February 04, 2025, 02:58:25 PM

Previous topic - Next topic
Print
Go Down Pages 1 2 3
User actions
March 18, 2025, 05:44:21 PM #15
We were testing with this regarding the kernel panic issue:

# opnsense-patch https://github.com/opnsense/core/commit/c8497ac14603

It needs a cron apply or reboot.  It will only reload the aliases twice per hours at the expense of the update interval. It has downsides, but we were discussion making it configurable for some edge cases like this.


Cheers,
Franco
March 24, 2025, 08:05:44 AM #16
Hi franco,

it works! Many thanks! Please make the reload configurable in future.
March 24, 2025, 03:54:10 PM #17
Thanks how do you do a cron apply after the install?  I have installed the patch yet the cron for that job still is configured for every hour.
March 24, 2025, 03:58:59 PM #18
System -> Settings -> Cron -> "apply"
March 24, 2025, 06:24:28 PM #19
Thanks! Did you see a difference for the update.py job in cron after the patch was installed?
March 25, 2025, 07:22:19 AM #20
Yes, the minute latency spikes are gone.
March 25, 2025, 12:49:16 PM #21
But I guess they now occur every half hour?
March 25, 2025, 01:26:39 PM #22
That would be the working theory. ;)
March 25, 2025, 01:56:31 PM #23
That I get, but I'm just wondering where the logic changed because my crontab still says every minute:



This was after installing the patch and then rebooting.  Did the same thing again and did the crontab apply.
March 25, 2025, 02:04:01 PM #24
No, you are wrong.

Code Select
1,31    *       *       *       *       (/usr/local/bin/flock -n -E 0 -o /tmp/filter_update_tables.lock /usr/local/opnsense/scripts/filter/update_tables.py) > /dev/null

Use crontab -e  and not the GUI
March 25, 2025, 02:32:03 PM #25
Thanks thats where I was checking from.  I had installed it at least two times before.  Just did it again, followed cron apply and now it is showing the change.

Thanks for following up!
March 26, 2025, 02:11:37 PM #26
Hi Franco,
Thanks for the patch. Great work (as always, and I mean that in a very positive way!!!).
Would it be possible to make the execution moments of the cron job customizable?
March 27, 2025, 03:56:26 PM #27
@franco

is this patch included in 25.1.4 now?
March 28, 2025, 02:48:35 PM #28
Judging by this output, I don't think so:

root@OPNsense:~ # crontab -l|grep update_tables
*   *   *   *   *   (/usr/local/bin/flock -n -E 0 -o /tmp/filter_update_tables.lock /usr/local/opnsense/scripts/filter/update_tables.py) > /dev/null
root@OPNsense:~ #
March 28, 2025, 02:54:43 PM #29
No, because it breaks MAC table updates by taking up to 30 minutes to render these changes. We're likely going to make this configurable, but it's not an immediate concern. Just change the values on your end for now.

What ships in 25.1.4 is the performance improvement of the task previously discussed here.


Cheers,
Franco
Print
Go Up Pages 1 2 3
User actions