Bug report - Bind 8.37 open a lot of idle connection
Alex Tang
alextang at cms.hkcable.com
Fri Dec 23 04:15:38 UTC 2005
Hi ISC
When I used netstat -a and it showed out follow result.
how to cause the following problem ? My dns server can be query by our ip address only through udp or tcp, which is used "allow-query" in dns server and firewall (cisco acl) to protect. When i check with lsof, it show that those connections were generated by bind services.
my bind version is bind 8.37
it is a cache dns server only and the server platform is Solaris 8 on Sun-Fire-V210
Is it a bug of bind 8.37 ?
dns$netstat -a | more
UDP: IPv4
Local Address Remote Address State
-------------------- -------------------- -------
*.* Unbound
localhost.ntp Idle
dns.xxx.com.ntp Idle
*.* Unbound
*.* Unbound
*.* Unbound
localhost.domain Idle
dns.xxx.com.domain Idle
*.52112 Idle
*.* Unbound
TCP: IPv4
Local Address Remote Address Swind Send-Q Rwind Recv-Q State
-------------------- -------------------- ----- ------ ----- ------ -------
*.* *.* 0 0 24576 0 IDLE
*.telnet *.* 0 0 24576 0 LISTEN
*.22 *.* 0 0 24576 0 LISTEN
*.* *.* 0 0 24576 0 IDLE
*.7938 *.* 0 0 24576 0 LISTEN
*.7937 *.* 0 0 24576 0 LISTEN
localhost.domain *.* 0 0 24576 0 LISTEN
dns.xxx.com.domain *.* 0 0 24576 0 LISTEN
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
*.* *.* 0 0 24576 0 IDLE
The dns could be query through udp. However, I found out follow log
only shows to u a little
30-Nov-2005 21:07:52.600 default: info: stream_getlen([64.202.167.50].53): Connection timed out
30-Nov-2005 21:07:59.878 default: info: stream_getlen([64.202.167.50].53): Connection timed out
30-Nov-2005 21:08:00.832 default: info: stream_getlen([64.202.165.4].53): Connection timed out
30-Nov-2005 21:08:05.069 default: info: stream_getlen([64.202.167.50].53): Connection timed out
30-Nov-2005 21:08:11.268 default: info: stream_getlen([64.202.167.50].53): Connection timed out
30-Nov-2005 21:08:13.280 default: info: stream_getlen([64.202.167.50].53): Connection timed out
30-Nov-2005 21:08:16.203 default: info: stream_getlen([64.202.167.50].53): Connection timed out
30-Nov-2005 21:44:57.008 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:44:57.008 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:44:57.008 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:44:57.012 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:44:57.016 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:44:57.350 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:44:57.350 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:44:59.004 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:45:00.005 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:45:01.069 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:45:01.070 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:45:01.074 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:45:01.078 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:45:01.078 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:45:01.087 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:45:01.218 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:45:01.218 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:45:02.005 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:45:02.012 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:45:02.039 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:45:02.039 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:45:02.558 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:45:02.559 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:45:03.083 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:45:03.099 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:45:03.102 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
30-Nov-2005 21:45:04.697 default: notice: fcntl(fd, F_DUPFD, 20): Too many open files
More information about the bind-users
mailing list