HELP - My BIND 9 config is VERY SLOW! VERY SLOW!
David Botham
dns at botham.net
Tue Feb 18 15:52:49 UTC 2003
> -----Original Message-----
> From: bind-users-bounce at isc.org [mailto:bind-users-bounce at isc.org] On
> Behalf Of NotMe
> Sent: Monday, February 17, 2003 8:35 PM
> To: comp-protocols-dns-bind at isc.org
> Subject: HELP - My BIND 9 config is VERY SLOW! VERY SLOW!
>
> Once again I decided to set up a dns server on my linix box (RH 8 -
> PII 266). I've run Bind in the past with excellent success on my home
> network (cable feed).
>
> Working with the DNS How-To (Nicolai Langfeldt v9.0 12-200-2001) I've
> used all the provided config's in the how-to and made changes
> named.conf in the forwarder section for my ISP dns.
>
> This is a dig result, localhost.
>
> [root at utah root]# dig -x 172.0.0.1
Did you mean to lookup 127.0.0.1?
With the query above, I would expect the delays you are getting, unless
you name server is authoritative for the 0.0.172.in-addr.arpa zone.
Dave..
>
> ; <<>> DiG 9.2.1 <<>> -x 172.0.0.1
> ;; global options: printcmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61008
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
>
> ;; QUESTION SECTION:
> ;1.0.0.172.in-addr.arpa. IN PTR
>
> ;; AUTHORITY SECTION:
> 172.in-addr.arpa. 10800 IN SOA arrowroot.arin.net.
> bind.arin.net. 2003021719 1800 900 691200 10800
>
> ;; Query time: 2037 msec
> ;; SERVER: 127.0.0.1#53(127.0.0.1)
> ;; WHEN: Mon Feb 17 20:29:51 2003
> ;; MSG SIZE rcvd: 99
>
>
> NOTE: The 2037 milli sec. I get simular query times (usually somewhat
> lower but unacceptible) for real queries.
>
> Here is my modified named.conf. Once again, I've used the other
> config files from the how-to http://langfeldt.net/DNS-HOWTO/BIND-9/
>
> Can anyone offer some suggestions, etc....
> kberrien at NO_SPAMattbi.com
> -------------------
> named.conf
> -------------------
> // Config file for caching only name server
> //
> // The version of the HOWTO you read may contain leading spaces
> // (spaces in front of the characters on these lines ) in this and
> // other files. You must remove them for things to work.
> //
> // Note that the filenames and directory names may differ, the
> // ultimate contents of should be quite similar though.
>
> options {
> directory "/var/named";
>
> // Uncommenting this might help if you have to go through a
> // firewall and things are not working out. But you probably
> // need to talk to your firewall admin.
>
> // query-source port 53;
>
> forward first;
> forwarders {
> 66.240.76.19;
> 204.127.202.19;
> };
>
> };
>
> controls {
> inet 127.0.0.1 allow { localhost; } keys { rndc_key; };
> };
>
> key "rndc_key" {
> algorithm hmac-md5;
> secret
> "c3Ryb25nIGVub3VnaCBmb3IgYSBtYW4gYnV0IG1hZGUgZm9yIGEgd29tYW4K";
> };
>
> zone "." {
> type hint;
> file "root.hints";
> };
>
> zone "0.0.127.in-addr.arpa" {
> type master;
> file "pz/127.0.0";
> };
More information about the bind-users
mailing list