HPE Community
Operating System - HP-UX
1825800 Members
2469 Online
109687 Solutions
New Discussion

how many virtual IPs can be binded on a NIC

 
SOLVED
Go to solution
Gary Yu
Super Advisor

‎03-01-2004 04:08 AM

‎03-01-2004 04:08 AM

how many virtual IPs can be binded on a NIC

Hi all,

I'm configuring iPlanet webserver on a A500 box with multiple URL supporting. each URL with https need a dedicated IP.

could anyone please let me know how many IP address I can configure on a single network adapter (like lan0:1, lan0:2 ...) -- we are using HPUX 11.0 with HP PCI 10/100BaseTX.

thanks,
Gary
0 Kudos
Reply
8 REPLIES 8
Steven E. Protter
Exalted Contributor

‎03-01-2004 04:11 AM

‎03-01-2004 04:11 AM

Solution

Re: how many virtual IPs can be binded on a NIC

I know of no limit other than that imposed by subnet masking

if the netmask for the interface is 255.255.255.0 then the most virtual interfaces you can have in addition to main is 252. That is for a total of 153.

Of course there comes a point where the configuration file becomes unmanagable.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
Reply
Mark Grant
Honored Contributor

‎03-01-2004 04:13 AM

‎03-01-2004 04:13 AM

Re: how many virtual IPs can be binded on a NIC

There may well be a limit but I've never heard of anyone hitting it. How many do you plan on having? In a service guard cluster, there are often many IP addresses on the same card.
Never preceed any demonstration with anything more predictive than "watch this"
Reply
Sridhar Bhaskarla
Honored Contributor

‎03-01-2004 04:17 AM

‎03-01-2004 04:17 AM

Re: how many virtual IPs can be binded on a NIC

Gary,

I too have never heard of any such limit.

As a side note, if your network connection supports, you can have a different IP than the primary interface for the virtual interface using 'ifconfig lanx:#' command.

-Sri
You may be disappointed if you fail, but you are doomed if you don't try
Reply
Steven E. Protter
Exalted Contributor

‎03-01-2004 04:28 AM

‎03-01-2004 04:28 AM

Re: how many virtual IPs can be binded on a NIC

no points for this.

That last number was supposed to be 253

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
Andrew Cowan
Honored Contributor

‎03-01-2004 07:55 PM

‎03-01-2004 07:55 PM

Re: how many virtual IPs can be binded on a NIC

I agree with SEP here, but would like to point out that whilst you can theoritcally have 253 (or more) addresses per interface. The limit may be (artificially) hit within the kernel with things such as the size of the routing tables etc.

I imagine that the performance would also be terrible as the amount of processing done by the kernel would climb exponentially?
Reply
Gary Yu
Super Advisor

‎03-02-2004 12:53 AM

‎03-02-2004 12:53 AM

Re: how many virtual IPs can be binded on a NIC

thank you guys very much for the confirmation and reminds, actually, performance and manageability are also a big concern to us in such scenario.

Gary
0 Kudos
Reply
rick jones
Honored Contributor

‎03-02-2004 05:49 AM

‎03-02-2004 05:49 AM

Re: how many virtual IPs can be binded on a NIC

I am aware of no hard-coded limit to the number of IPs that may be assigned to a given interface. The speed of adding those IPs may degrade as you increase their number, and indeed various hash chains may start to get rather long.

The kernel tunable tcphashsz may alter the size of some of the related hash tables. A description of that tunable may be in SAM, and there shoudl be one in some of the "tuning descriptions" online at www.spec.org for HP-UX SPECweb9* benchmark disclosures.

As for performance, I'm not familiar with the https performance of iPlanet. The https performance of ZWS can be quite good. There are a number of SPECweb99_SSL disclsoures, including some rather old ones on an A500 :) at www.spec.org. Youi may find some other useful tuning ideas in those disclosures.

I believe the only iPlanet SSL number there used a hardware crypto accelerator card.

I have a question about the wording of your intitial question though...

When you say "each URL wqith https need a dedicated IP" do you _really_ mean _each_ distinct URL on the system?!? That is a separate virtual server for every separate URL? Or do you mean you need to support many virtual https servers, each serving a number of URLs?
there is no rest for the wicked yet the virtuous have no pillows
Reply
Gary Yu
Super Advisor

‎03-02-2004 07:03 AM

‎03-02-2004 07:03 AM

Re: how many virtual IPs can be binded on a NIC

thank you Rick.

Yes, with iplanet, if you don't want to see the ssl cert warnings in browser, you need to use IP based virtual server for each URL, but with version 6, you don't really need to configure a bounch of virtual servers, it can be achieved by just adding virtual "class" associated to the IP based listener sockets, inside a server configuration.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.