Nginx Ingress TCP Connection Limit During Load Testing in Kubernetes

DDODDOIM · February 15, 2025, 12:43pm

Kubernetes version: Latest
Cloud being used: (put bare-metal if not on a public cloud)
Installation method:
Host OS: Ubuntu 22.04
CNI and version: Calico
CRI and version:

I’m running a community site on a Kubernetes environment and using Nginx Ingress as below:
Nginx Ingress Controller → Nginx SVC[ Nginx Pods (serving JS files, etc.)]

During load testing with many concurrent users, the TCP connection count on the Ingress side goes up to around 1200, while each of the 3 Nginx Pods sees its TCP connection count rise above 300 but then gets capped at around 75.
It seems like certain connections are being limited when high traffic occurs.

I want the Nginx Pods to handle all incoming connections and process user requests quickly. However, tweaking the Ingress upstream count, worker connections, and other settings didn’t help. I also tried looking into the internal load balancer (like balancer.lua), but couldn’t find a solution.

If anyone knows how to address this issue or has suggestions on what to check, please let me know. Thanks in advance!

jayeshmahajan · February 16, 2025, 4:25pm

Do you have autoscaling enabled?

kubectl autoscale deployment nginx-ingress-controller \
    --cpu-percent=60 --min=2 --max=10

Check ingress controller limits
kubectl describe deployment nginx-ingress-controller -n ingress-nginx

resources:
  requests:
    cpu: "500m"
    memory: "512Mi"
  limits:
    cpu: "2000m"
    memory: "2Gi"

check if nginx pods has cpu, memory or other resources limits.
Nginx worker settings Nginx’s worker_processes and worker_connections settings directly impact how many concurrent connections can be processed.

worker_processes auto;
worker_rlimit_nofile 100000;

events {
    worker_connections 16384;
    multi_accept on;
}

Ingress controller may have limits, try to see if you want to tune it and if it helps.

metadata:
  annotations:
    nginx.ingress.kubernetes.io/proxy-connect-timeout: "30s"
    nginx.ingress.kubernetes.io/proxy-read-timeout: "600s"
    nginx.ingress.kubernetes.io/proxy-send-timeout: "600s"
    nginx.ingress.kubernetes.io/proxy-buffering: "off"
    nginx.ingress.kubernetes.io/proxy-request-buffering: "off"
    nginx.ingress.kubernetes.io/keep-alive-requests: "10000"
    nginx.ingress.kubernetes.io/upstream-keepalive-connections: "1024"
    nginx.ingress.kubernetes.io/upstream-keepalive-timeout: "300s"
    nginx.ingress.kubernetes.io/upstream-keepalive-requests: "10000"

Topic		Replies	Views
Stuck with nginx ingress controller General Discussions network	1	2452	July 20, 2023
Ingress-nginx rate limitting General Discussions	0	1974	November 20, 2020
Forward all TCP and UDP ports from load balancer to nginx ingress on Azure Kubernetes Service General Discussions	1	2125	May 6, 2020
NGINX Ingress adds 1500ms to response time General Discussions development	1	2206	September 10, 2022
Ingress vs Node Port General Discussions	0	292	December 29, 2023

Nginx Ingress TCP Connection Limit During Load Testing in Kubernetes

Related topics