search cancel

MOM Has too many open files after 20 minutes /socket exception


Article ID: 225237


Updated On:


CA Application Performance Management (APM / Wily / Introscope)


Logs repeating .

Works 10-15 minutes . Then gets this . And port 5001 drop connections

 [DEBUG] [Incoming Connection Listener] [Manager.IncomingConnectionListener] Acquiring connection ticket

[DEBUG] [Incoming Connection Listener] [Manager.IncomingConnectionListener] Calling server socket accept()

 [ERROR] [Incoming Connection Listener] [Manager.IncomingConnectionListener] SocketException has been thrown, probably authentication is failed

[DEBUG] [Incoming Connection Listener] [Manager.IncomingConnectionListener] SocketException has been thrown, probably authentication is failed Too many open files (Accept failed)         at Method)         at         at         at         at com.wily.isengard.postofficehu




Release : 10.7.0

Component : Introscope


An internet search shows this is all documented:

Search terms search: apm white list agents

Agent side (Java Agent):

Q10: Can you recommend best practices to implement a whitelist/blacklist approach for agents, e.g. through loadbalancing.xml?


Load balancing is not a good way to implement whitelist for agents as a security measure.
You can use network firewall of the operating system (e.g. iptables on Linux) to restrict access to TCP port 5001 (and TLS port 5443 if enabled)

For LB information and other options how to block agents you can refer to the below 2 links:

Is there a way to block some agents connections to a Enterprise Manager?
here is an Enterprise Manager property that will allow to ban the IP addresses from agents. Please follow below steps:

1.- Open the file for the Enterprise Manager you would like to block agents
2.- Add the following property:

Agent1 IP Address:
Agent2 IP Address:
Agent3 IP Address:

3.- Save the file
4.- Restart the Enterprise Manager for the changes to take effect