Products
Veeam Data Cloud

SaaS Data Protection Solution

Backup & Recovery service for:

Microsoft 365 & Entra ID

Microsoft Azure

Salesforce

Vault Cloud Storage

Veeam Data Platform

Self-managed data protection software for hybrid and multi-cloud environments

Data Protection

Cyber Security

AI-Driven Insights

Sovereignty, Governance & Compliance

Services

Cyber Extortion Response

Cyber Secure Program

Workload Specific

Solutions for individual applications

Backup for Microsoft 365

Backup for Microsoft Entra ID

Backup for Salesforce

Backup for Kubernetes

Backup for AWS

Backup for Microsoft Azure

Backup for Google Cloud

NEW RELEASE

Veeam Data Platform v13

Simplify operations and strengthen security with Veeam’s most intelligent and secure release yet

Explore now

Comprehensive data resilience for hybrid, multi-cloud and SaaS data

Data Backup
Automated backup solutions that evolve across platforms and locations

Data Recovery
Plan, test, automate, and scale recovery operations to defy any disruption

Data Portability
Move and store your data wherever you need it with no vendor lock-in

Data Security
The trusted leader in data resilience helping you protect smarter, detect faster, and recover clean.

Data Intelligence
AI-powered tools to automate analysis, enhance decisions, and stay secure

BENCHMARK YOUR RESILIENCE

Align Resilience to Business & Compliance Goals

Discover how leaders identify risk with the Data Resilience Maturity Model

explore now

Hybrid & Multi-Cloud

Veeam Backup & Replication CE

All Free Tools

Cloud

Veeam Backup for AWS Free

Veeam Backup for Microsoft Azure Free

Veeam Backup for Google Cloud Free

Veeam Kasten Free

SaaS

Veeam Backup for Microsoft 365 CE

Veeam Insights for Microsoft 365

Veeam for Salesforce CE

Veeam Data Platform

Self-managed data protection software for hybrid and multi-cloud environments

Packaging & Enterprise Editions

Veeam Data Cloud

SaaS Data Resilience Solutions

Purchasing Options

All Products

Find a Reseller

Buy Online
Solutions
Use Case

Ransomware Recovery

Hybrid Cloud

Microsoft SaaS Data Protection

Industries

Government

Education

Financial Services & Insurance

Healthcare

Business Type

Enterprise

Small Business

Service Provider

Services

Cyber Extortion Response

Cyber Secure Program

Alliance Technologies

See All Veeam Alliance Partners

AWS

Cisco

Google

HPE

Lenovo

Microsoft

VMware

Alliance Partner Integrations & Qualifications

Environment

SaaS  Microsoft 365 | Microsoft Entra ID | Salesforce

Cloud  AWS | Azure | Google | Kubernetes

Virtual  VMware | Hyper-V | Nutanix AHV | Oracle Linux VM | RHV | Proxmox | Scale Computing

Physical  Windows | Linux | MacOS | Unix | NAS

Apps  Microsoft | Oracle | SAP Hana | PostgreSQL | MongoDB
Support
Get Support

Support

Open a Case

Track Your Case

Support Policy

Renewals Center

Renewals

Services

Veeam Customer Success

Training & Education

Veeam University

Kubernetes Learning Portal

Support Resources

Veeam Data Cloud Changelog

Technical Documentation

Knowledge Base

Kasten Technical Documentation

Kasten Knowledge Base

Downloads

All Product Downloads

Community

Community Resource Hub

Community Experts

R&D Forums
Resources
Thought Leadership

Data Resilience Maturity Model

Resource Library

White Papers

Solution Briefs

Analyst Reports

See All Resources

Customer Stories

See All Stories

Blog

Veeam Blog

Glossary

Veeam Glossary

Events & Webinars

VeeamON

Events

Upcoming Webinars

On-Demand Webinars

Product Demo

On-Demand Platform Demo

Upcoming Product Demos

On-Demand Product Demos

Resilience Benchmarking

Data Resilience Maturity Model
Partners
WHY PARTNER WITH VEEAM

Become a Partner

Value-Added Reseller

Service Provider

Global System Integrator

Technology Alliance

Find a Partner

Find a Partner

Partner Resources

ProPartner Portal
CXOs
Veeam’s exclusive community that brings together a suite of experiences & resources for executive leaders.

Gain access to:

Conversations between influential tech leaders

Meaningful connection and candid dialogue

Peer-to-peer collaborative problem-solving

Thought Leadership

be: Ready - Explore expert guidance, trends, and innovations at our leadership hub online

INSIGHTS & RESEARCH FOR CXOs

Executive Exchange Events

Networking, insights, and shared CXO experiences at exclusive events worldwide

Events for CXOs

Veeam Support Knowledge Base
Overcoming TCP/IP Connection Limits with PgBouncer and PostgreSQL on Windows

Overcoming TCP/IP Connection Limits with PgBouncer and PostgreSQL on Windows

KB ID:	4760
Product:	Veeam Backup for Microsoft 365 \| 8.1 \| 8.2
Published:	2025-08-29
Last Modified:	2025-08-29

Cheers for trusting us with the spot in your mailbox!

Now you’re less likely to miss what’s been brewing in our knowledge base with this weekly digest

Oops! Something went wrong.

Please, try again later.

Challenge

When running PgBouncer and PostgreSQL on Windows, especially under high-load scenarios with frequent connect/disconnect cycles, you may encounter exhaustion of available TCP ports. This is due to many connections ending up in the TIME_WAIT state, preventing immediate reuse of those ports and potentially leading to connection failures.

PgBouncer helps reduce the frequency of backend (PostgreSQL) connections, but VBO Controller Proxies opens and closes connections rapidly to PgBouncer itself, what can lead to the Windows ports exhaustion.

Cause

Available Ephemeral Port Exhaustion — By default, Windows allows for assigning 16,384 ports (49152-65535) for outgoing connections, known as the Dynamic Port Range. In heavy load environments with multiple connections, the available ephemeral ports may be exhausted.
Ports Stuck in TIME_WAIT State — When a TCP connection is closed, the port assigned to that connection enters the TIME_WAIT state for 240 seconds (Windows default value). While in this state, the port cannot be reassigned to another connection. Therefore, when there is a high connection churn, this 4-minute delay in unused port reassignment can cause all available ephemeral ports to be used up.

Solution

This situation can be resolved by reducing the port wait timeout, increasing the number of ephemeral ports, or combining them.

Considerations

It is advisable first to modify the TIME_WAIT timeout period, and then, only if issues persist, consider expanding the Dynamic Port Range (quantity of available ephemeral ports).
The Windows default Dynamic Port Range of 49152-65535 aligns with RFC6335.6, and most operating systems and firewalls will expect that port range to be used by ephemeral ports for communication.
Considering the maximum port number is 65535, the only way to expand the Dynamic Port Range is to change the Dynamic Port Range's starting port. That means selecting a port number in the range prescribed for registered ports, which are more commonly used for persistent service communication.
When changing the Dynamic Port Range, we suggest initially using a starting port far higher than most services will utilize, such as port 15,000, to prevent port conflicts. The change from a Dynamic Port Range of 49152-65535 to 15000-65535 is an increase from 16,384 ports to 50,535, or a 208% increase in available ephemeral ports.

Reducing the TIME_WAIT Timeout Period^{(Recommended)}

Create the following registry value to modify the length of time that a connection will stay in the TIME_WAIT state before being closed. The default is 240 seconds, which, with the default Dynamic Port Range, will lead to a limit of 68 connections per second. Changing this to 30 seconds will increase that to 546( # of ports / time out in seconds = connections per second || 16384/30= ~546) connections per second.

Key Location: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters
Value Name: TcpTimedWaitDelay
Value Type: DWORD (32-Bit) Value
Value Data: 30

Note: Restart required to take effect.

PowerShell Command:

New-ItemProperty -Path 'HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' -Name 'TcpTimedWaitDelay' -Value "30" -PropertyType DWORD -Force
                
            

Increasing the Number of Available Ephemeral Ports^{(Conditional)}

Before you change the Dynamic Port Range, please review all notes in the Considerations section above.

If issues persist after reducing the TCP Timed Wait Delay to 30 seconds. The following command will change the starting port of Dynamic Port Range from 49152 to 15000, resulting in just over triple the number of ports and raising the theoretical connections per second limit from 546( # of ports / time out in seconds = connections per second || 16384/30= ~546) to 1,684.

Note: Restart required to take effect.

netsh int ipv4 set dynamicport tcp start=15000 num=50535
                
            

If problems persist, you can change the values to start=1025 and num=64511. Keep in mind that lowering the starting port of the dynamic range into the registered section could cause port conflicts if a service or application tries to use a fixed port number that is already assigned for ephemeral port use.

More Information

If this KB article did not resolve your issue or you need further assistance with Veeam software, please create a Veeam Support Case.

To submit feedback regarding this article, please click this link: Send Article Feedback
To report a typo on this page, highlight the typo with your mouse and press CTRL + Enter.

Spelling error in text

Thank you!

Your feedback has been received and will be reviewed.

Oops! Something went wrong.

Please, try again later.

You have selected too large block!

Please try select less.

KB Feedback/Suggestion

This form is only for KB Feedback/Suggestions, if you need help with the software open a support case

Product

Topic

Description

By submitting, you are agreeing to have your personal information managed in accordance with the terms of Veeam's Privacy Notice.

I would like to receive a follow-up email regarding my feedback

Verify your email to continue your product download

We've sent a verification code to:

An email with a verification code was just sent to

Didn't receive the code? Click to resend in sec

Didn't receive the code? Click to resend

Thank you!

Your feedback has been received and will be reviewed.

Oops! Something went wrong.

Please, try again later.

Overcoming TCP/IP Connection Limits with PgBouncer and PostgreSQL on Windows

Cheers for trusting us with the spot in your mailbox!

Oops! Something went wrong.

Challenge

Cause

Solution

Considerations

Reducing the TIME_WAIT Timeout Period (Recommended)

Increasing the Number of Available Ephemeral Ports (Conditional)

More Information

Related Articles

Spelling error in text

Thank you!

Oops! Something went wrong.

You have selected too large block!

KB Feedback/Suggestion

Thank you!

Oops! Something went wrong.

Reducing the TIME_WAIT Timeout Period^{(Recommended)}

Increasing the Number of Available Ephemeral Ports^{(Conditional)}