replysize problem
Lawrence K. Chen, P.Eng.
lkchen at ksu.edu
Wed Jan 9 20:25:56 UTC 2013
Anybody know anything about F5 Big-IPs?
I was doing the replysize test on various DNS servers that I maintain, and found two are reporting a replysize limit less than 3843 (the result that I get for all my other DNS servers.) And, with those two, they will alternate between a limit that is a few bytes short of 3843 to only being 1086 bytes.
Have had the IT security people look over the firewalls and our Procera (which is known to consider DNSSEC to be encrypted udp bittorrent, and block it) to see if there's something different that's affecting just those two servers.
But, they say that there isn't anything different now in the configurations for these two DNS servers and the rest of my DNS servers.
So, the only other difference I can think of is, is that these two servers are in a pool behind our F5.
--
Who: Lawrence K. Chen, P.Eng. - W0LKC - Senior Unix Systems Administrator
For: Enterprise Server Technologies (EST) -- & SafeZone Ally
Snail: Computing and Telecommunications Services (CTS)
Kansas State University, 109 East Stadium, Manhattan, KS 66506-3102
Phone: (785) 532-4916 - Fax: (785) 532-3515 - Email: lkchen at ksu.edu
Web: http://www-personal.ksu.edu/~lkchen - Where: 11 Hale Library
More information about the bind-users
mailing list