* [gentoo-user] Best caching dns server?
@ 2012-05-19 2:15 Nilesh Govindrajan
2012-05-19 10:59 ` Adam Carter
2012-05-19 16:36 ` Alan McKinnon
0 siblings, 2 replies; 15+ messages in thread
From: Nilesh Govindrajan @ 2012-05-19 2:15 UTC (permalink / raw
To: Gentoo User Mailing List
[-- Attachment #1: Type: text/plain, Size: 563 bytes --]
Hi,
Which is the best caching dns server? I'm presently using pdns-recursor,
which is quite good, but doesn't have option to set minimum ttl (doesn't
make sense, but some sites like twitter have ridiculously low ttl of 30s).
Also, it isn't able to save cached entries to file so that it can be
restored on next boot. Any option?
I am keeping my box 24x7 on because it serves as dns on my small home wifi,
not acceptable to me, because network is almost off at night (only phone)
and I have my router as secondary dns.
--
Nilesh Govindrajan
http://nileshgr.com
[-- Attachment #2: Type: text/html, Size: 654 bytes --]
^ permalink raw reply [flat|nested] 15+ messages in thread
* Re: [gentoo-user] Best caching dns server?
2012-05-19 2:15 [gentoo-user] Best caching dns server? Nilesh Govindrajan
@ 2012-05-19 10:59 ` Adam Carter
2012-05-19 11:13 ` Nilesh Govindrajan
2012-05-19 16:36 ` Alan McKinnon
1 sibling, 1 reply; 15+ messages in thread
From: Adam Carter @ 2012-05-19 10:59 UTC (permalink / raw
To: gentoo-user
> Which is the best caching dns server? I'm presently using pdns-recursor,
> which is quite good, but doesn't have option to set minimum ttl (doesn't
> make sense, but some sites like twitter have ridiculously low ttl of 30s).
The load balancing technology will be slow to respond if the TTLs are
high, so given that responsive load balancing and timely fail over are
good things, it does make sense. IIRC the F5 default is 20 seconds. Be
careful if you are going to break DNS, there may be consequences
you're not aware of.
> Also, it isn't able to save cached entries to file so that it can be
> restored on next boot. Any option?
>
> I am keeping my box 24x7 on because it serves as dns on my small home wifi,
> not acceptable to me, because network is almost off at night (only phone)
> and I have my router as secondary dns.
Can you re-phrase that? - its hard to understand what the problem is.
^ permalink raw reply [flat|nested] 15+ messages in thread
* Re: [gentoo-user] Best caching dns server?
2012-05-19 10:59 ` Adam Carter
@ 2012-05-19 11:13 ` Nilesh Govindrajan
2012-05-19 11:35 ` Willie Matthews
0 siblings, 1 reply; 15+ messages in thread
From: Nilesh Govindrajan @ 2012-05-19 11:13 UTC (permalink / raw
To: gentoo-user
On Sat, May 19, 2012 at 4:29 PM, Adam Carter <adamcarter3@gmail.com> wrote:
>> Which is the best caching dns server? I'm presently using pdns-recursor,
>> which is quite good, but doesn't have option to set minimum ttl (doesn't
>> make sense, but some sites like twitter have ridiculously low ttl of 30s).
>
> The load balancing technology will be slow to respond if the TTLs are
> high, so given that responsive load balancing and timely fail over are
> good things, it does make sense. IIRC the F5 default is 20 seconds. Be
> careful if you are going to break DNS, there may be consequences
> you're not aware of.
>
I know that. Just experimenting things, because if I can cache it
locally, it would be quicker for me.
>> Also, it isn't able to save cached entries to file so that it can be
>> restored on next boot. Any option?
>>
>> I am keeping my box 24x7 on because it serves as dns on my small home wifi,
>> not acceptable to me, because network is almost off at night (only phone)
>> and I have my router as secondary dns.
>
> Can you re-phrase that? - its hard to understand what the problem is.
>
Persistence across multiple boots/reboots.
I found pdnsd which can do that, trying that out now.
--
Nilesh Govindarajan
http://nileshgr.com
^ permalink raw reply [flat|nested] 15+ messages in thread
* Re: [gentoo-user] Best caching dns server?
2012-05-19 11:13 ` Nilesh Govindrajan
@ 2012-05-19 11:35 ` Willie Matthews
2012-05-19 11:42 ` Dale
2012-05-19 12:53 ` Nilesh Govindrajan
0 siblings, 2 replies; 15+ messages in thread
From: Willie Matthews @ 2012-05-19 11:35 UTC (permalink / raw
To: gentoo-user
On 05/19/12 04:13, Nilesh Govindrajan wrote:
> On Sat, May 19, 2012 at 4:29 PM, Adam Carter <adamcarter3@gmail.com> wrote:
>>> Which is the best caching dns server? I'm presently using pdns-recursor,
>>> which is quite good, but doesn't have option to set minimum ttl (doesn't
>>> make sense, but some sites like twitter have ridiculously low ttl of 30s).
>> The load balancing technology will be slow to respond if the TTLs are
>> high, so given that responsive load balancing and timely fail over are
>> good things, it does make sense. IIRC the F5 default is 20 seconds. Be
>> careful if you are going to break DNS, there may be consequences
>> you're not aware of.
>>
> I know that. Just experimenting things, because if I can cache it
> locally, it would be quicker for me.
>
>>> Also, it isn't able to save cached entries to file so that it can be
>>> restored on next boot. Any option?
>>>
>>> I am keeping my box 24x7 on because it serves as dns on my small home wifi,
>>> not acceptable to me, because network is almost off at night (only phone)
>>> and I have my router as secondary dns.
>> Can you re-phrase that? - its hard to understand what the problem is.
>>
> Persistence across multiple boots/reboots.
>
> I found pdnsd which can do that, trying that out now.
>
You should really try changing you DNS server to some faster ones. I was
having this same problem with my ISP or DSL modem with built in router
taking a long time. I changed my DNS servers to Google DNS Servers
(8.8.4.4 and 8.8.8.8) and haven't had a problem.
My setup is a little different but all in all I would really suggest you
try a DNS server outside of your ISP.
--
Willie Matthews
matthews.willie@gmail.com
^ permalink raw reply [flat|nested] 15+ messages in thread
* Re: [gentoo-user] Best caching dns server?
2012-05-19 11:35 ` Willie Matthews
@ 2012-05-19 11:42 ` Dale
2012-05-19 12:09 ` Pandu Poluan
2012-05-19 12:53 ` Nilesh Govindrajan
1 sibling, 1 reply; 15+ messages in thread
From: Dale @ 2012-05-19 11:42 UTC (permalink / raw
To: gentoo-user
Willie Matthews wrote:
>
>
> On 05/19/12 04:13, Nilesh Govindrajan wrote:
>> On Sat, May 19, 2012 at 4:29 PM, Adam Carter <adamcarter3@gmail.com> wrote:
>>>> Which is the best caching dns server? I'm presently using pdns-recursor,
>>>> which is quite good, but doesn't have option to set minimum ttl (doesn't
>>>> make sense, but some sites like twitter have ridiculously low ttl of 30s).
>>> The load balancing technology will be slow to respond if the TTLs are
>>> high, so given that responsive load balancing and timely fail over are
>>> good things, it does make sense. IIRC the F5 default is 20 seconds. Be
>>> careful if you are going to break DNS, there may be consequences
>>> you're not aware of.
>>>
>> I know that. Just experimenting things, because if I can cache it
>> locally, it would be quicker for me.
>>
>>>> Also, it isn't able to save cached entries to file so that it can be
>>>> restored on next boot. Any option?
>>>>
>>>> I am keeping my box 24x7 on because it serves as dns on my small home wifi,
>>>> not acceptable to me, because network is almost off at night (only phone)
>>>> and I have my router as secondary dns.
>>> Can you re-phrase that? - its hard to understand what the problem is.
>>>
>> Persistence across multiple boots/reboots.
>>
>> I found pdnsd which can do that, trying that out now.
>>
> You should really try changing you DNS server to some faster ones. I was
> having this same problem with my ISP or DSL modem with built in router
> taking a long time. I changed my DNS servers to Google DNS Servers
> (8.8.4.4 and 8.8.8.8) and haven't had a problem.
>
> My setup is a little different but all in all I would really suggest you
> try a DNS server outside of your ISP.
>
I agree. My ISP is AT&T and I changed my DNS to Google's too. It is
very fast compared to AT&T's servers. I have had AT&T's servers not
respond for several seconds but Google's just seem to work.
Dale
:-) :-)
--
I am only responsible for what I said ... Not for what you understood or
how you interpreted my words!
Miss the compile output? Hint:
EMERGE_DEFAULT_OPTS="--quiet-build=n"
^ permalink raw reply [flat|nested] 15+ messages in thread
* Re: [gentoo-user] Best caching dns server?
2012-05-19 11:42 ` Dale
@ 2012-05-19 12:09 ` Pandu Poluan
2012-05-20 20:14 ` Mick
2012-05-21 16:40 ` Tanstaafl
0 siblings, 2 replies; 15+ messages in thread
From: Pandu Poluan @ 2012-05-19 12:09 UTC (permalink / raw
To: gentoo-user
[-- Attachment #1: Type: text/plain, Size: 1632 bytes --]
On May 19, 2012 6:46 PM, "Dale" <rdalek1967@gmail.com> wrote:
>
> Willie Matthews wrote:
> >
[le snip]
> >
> > You should really try changing you DNS server to some faster ones. I was
> > having this same problem with my ISP or DSL modem with built in router
> > taking a long time. I changed my DNS servers to Google DNS Servers
> > (8.8.4.4 and 8.8.8.8) and haven't had a problem.
> >
> > My setup is a little different but all in all I would really suggest you
> > try a DNS server outside of your ISP.
> >
>
>
> I agree. My ISP is AT&T and I changed my DNS to Google's too. It is
> very fast compared to AT&T's servers. I have had AT&T's servers not
> respond for several seconds but Google's just seem to work.
>
Here's the result of a test comparing the performance of public DNS servers
:
http://www.thousandeyes.com/blog/public-dns-resolver-showdown
Despite what the linked article said, in my experience, Level 3
(4.2.2.[1-5]) is at least as fast as Google. I guess it depends on one's
ISP. But both of them are mucho faster (and much stabler) than my ISP's DNS
servers.
But stay away from OpenDNS like the plague. They are known to perform false
resolve, especially if the domain being resolved does not exist.
Best of all would be to create a list of public DNS servers, and feed it
into a DNS Benchmarking tool, such as this one from GRC:
http://www.grc.com/dns/benchmark.htm
The above tool is how I determine Level 3 to be on a par with Google.
(Sorry, the GRC Tool is Windows-only, but within the article there's an
explanation on how the tool works, so it should be emulatable using bash
and dig).
Rgds,
[-- Attachment #2: Type: text/html, Size: 2134 bytes --]
^ permalink raw reply [flat|nested] 15+ messages in thread
* Re: [gentoo-user] Best caching dns server?
2012-05-19 11:35 ` Willie Matthews
2012-05-19 11:42 ` Dale
@ 2012-05-19 12:53 ` Nilesh Govindrajan
1 sibling, 0 replies; 15+ messages in thread
From: Nilesh Govindrajan @ 2012-05-19 12:53 UTC (permalink / raw
To: gentoo-user
On Sat, May 19, 2012 at 5:05 PM, Willie Matthews
<matthews.willie@gmail.com> wrote:
>
>
> On 05/19/12 04:13, Nilesh Govindrajan wrote:
>> On Sat, May 19, 2012 at 4:29 PM, Adam Carter <adamcarter3@gmail.com> wrote:
>>>> Which is the best caching dns server? I'm presently using pdns-recursor,
>>>> which is quite good, but doesn't have option to set minimum ttl (doesn't
>>>> make sense, but some sites like twitter have ridiculously low ttl of 30s).
>>> The load balancing technology will be slow to respond if the TTLs are
>>> high, so given that responsive load balancing and timely fail over are
>>> good things, it does make sense. IIRC the F5 default is 20 seconds. Be
>>> careful if you are going to break DNS, there may be consequences
>>> you're not aware of.
>>>
>> I know that. Just experimenting things, because if I can cache it
>> locally, it would be quicker for me.
>>
>>>> Also, it isn't able to save cached entries to file so that it can be
>>>> restored on next boot. Any option?
>>>>
>>>> I am keeping my box 24x7 on because it serves as dns on my small home wifi,
>>>> not acceptable to me, because network is almost off at night (only phone)
>>>> and I have my router as secondary dns.
>>> Can you re-phrase that? - its hard to understand what the problem is.
>>>
>> Persistence across multiple boots/reboots.
>>
>> I found pdnsd which can do that, trying that out now.
>>
> You should really try changing you DNS server to some faster ones. I was
> having this same problem with my ISP or DSL modem with built in router
> taking a long time. I changed my DNS servers to Google DNS Servers
> (8.8.4.4 and 8.8.8.8) and haven't had a problem.
>
> My setup is a little different but all in all I would really suggest you
> try a DNS server outside of your ISP.
>
> --
>
> Willie Matthews
> matthews.willie@gmail.com
>
>
I don't use ISP DNS as such, and I don't have their addresses either.
I've been using opendns for ages and added Google as fallback after it
was out for public.
The only advantage of using opendns is phishing protection and other
features like botnet/malware protection, about they not returning
NXDOMAIN on invalid domains is taken care of by pdnsd's reject option
:D
The problem with opendns is the query time is large from my ISP, so
things seem slow.
I'm now using pdnsd, it has support for round robin load balancing
which is the algorithm used for load balancing usually, so websites
shouldn't have a problem.
Also, pdnsd has an option for minimum ttl of records as I wanted and
cache persistence over reboots. It's the thing that fits my needs
perfectly.
--
Nilesh Govindarajan
http://nileshgr.com
^ permalink raw reply [flat|nested] 15+ messages in thread
* Re: [gentoo-user] Best caching dns server?
2012-05-19 2:15 [gentoo-user] Best caching dns server? Nilesh Govindrajan
2012-05-19 10:59 ` Adam Carter
@ 2012-05-19 16:36 ` Alan McKinnon
2012-05-20 0:45 ` Nilesh Govindrajan
1 sibling, 1 reply; 15+ messages in thread
From: Alan McKinnon @ 2012-05-19 16:36 UTC (permalink / raw
To: gentoo-user
On Sat, 19 May 2012 07:45:56 +0530
Nilesh Govindrajan <contact@nileshgr.com> wrote:
> Hi,
>
> Which is the best caching dns server? I'm presently using
> pdns-recursor, which is quite good, but doesn't have option to set
> minimum ttl (doesn't make sense, but some sites like twitter have
> ridiculously low ttl of 30s). Also, it isn't able to save cached
> entries to file so that it can be restored on next boot. Any option?
You can use almost any cache you want...
... except bind
We use unbound. Does the job, does it well, developer very responsive.
But do not fiddle with TTLs, that breaks stuff in spectacular ways.
Essentially, with the TTL the auth server is saying "We guarantee that
you can treat this RR as valid for X amount of time and suffer no ill
effects if you do"
What you want to do is break that agreement, which is really not s good
idea.
>
> I am keeping my box 24x7 on because it serves as dns on my small home
> wifi, not acceptable to me, because network is almost off at night
> (only phone) and I have my router as secondary dns.
Just use Google's caches or OpenDNS. They do the job so much better
than you ever could. Why reinvent the wheel?
--
Alan McKinnnon
alan.mckinnon@gmail.com
^ permalink raw reply [flat|nested] 15+ messages in thread
* Re: [gentoo-user] Best caching dns server?
2012-05-19 16:36 ` Alan McKinnon
@ 2012-05-20 0:45 ` Nilesh Govindrajan
2012-05-20 19:47 ` Alan McKinnon
0 siblings, 1 reply; 15+ messages in thread
From: Nilesh Govindrajan @ 2012-05-20 0:45 UTC (permalink / raw
To: gentoo-user
On Sat, May 19, 2012 at 10:06 PM, Alan McKinnon <alan.mckinnon@gmail.com> wrote:
> On Sat, 19 May 2012 07:45:56 +0530
> Nilesh Govindrajan <contact@nileshgr.com> wrote:
>
>> Hi,
>>
>> Which is the best caching dns server? I'm presently using
>> pdns-recursor, which is quite good, but doesn't have option to set
>> minimum ttl (doesn't make sense, but some sites like twitter have
>> ridiculously low ttl of 30s). Also, it isn't able to save cached
>> entries to file so that it can be restored on next boot. Any option?
>
> You can use almost any cache you want...
>
> ... except bind
>
> We use unbound. Does the job, does it well, developer very responsive.
>
> But do not fiddle with TTLs, that breaks stuff in spectacular ways.
> Essentially, with the TTL the auth server is saying "We guarantee that
> you can treat this RR as valid for X amount of time and suffer no ill
> effects if you do"
>
> What you want to do is break that agreement, which is really not s good
> idea.
>
>>
>> I am keeping my box 24x7 on because it serves as dns on my small home
>> wifi, not acceptable to me, because network is almost off at night
>> (only phone) and I have my router as secondary dns.
>
> Just use Google's caches or OpenDNS. They do the job so much better
> than you ever could. Why reinvent the wheel?
>
>
Slow connection. See my previous reply to the list. I'm using pdnsd,
which can persist records and has every damn feature I wanted.
--
Nilesh Govindarajan
http://nileshgr.com
^ permalink raw reply [flat|nested] 15+ messages in thread
* Re: [gentoo-user] Best caching dns server?
2012-05-20 0:45 ` Nilesh Govindrajan
@ 2012-05-20 19:47 ` Alan McKinnon
2012-05-21 0:43 ` Nilesh Govindrajan
0 siblings, 1 reply; 15+ messages in thread
From: Alan McKinnon @ 2012-05-20 19:47 UTC (permalink / raw
To: gentoo-user
On Sun, 20 May 2012 06:15:42 +0530
Nilesh Govindrajan <contact@nileshgr.com> wrote:
> On Sat, May 19, 2012 at 10:06 PM, Alan McKinnon
> <alan.mckinnon@gmail.com> wrote:
> > On Sat, 19 May 2012 07:45:56 +0530
> > Nilesh Govindrajan <contact@nileshgr.com> wrote:
> >
> >> Hi,
> >>
> >> Which is the best caching dns server? I'm presently using
> >> pdns-recursor, which is quite good, but doesn't have option to set
> >> minimum ttl (doesn't make sense, but some sites like twitter have
> >> ridiculously low ttl of 30s). Also, it isn't able to save cached
> >> entries to file so that it can be restored on next boot. Any
> >> option?
> >
> > You can use almost any cache you want...
> >
> > ... except bind
> >
> > We use unbound. Does the job, does it well, developer very
> > responsive.
> >
> > But do not fiddle with TTLs, that breaks stuff in spectacular ways.
> > Essentially, with the TTL the auth server is saying "We guarantee
> > that you can treat this RR as valid for X amount of time and suffer
> > no ill effects if you do"
> >
> > What you want to do is break that agreement, which is really not s
> > good idea.
> >
> >>
> >> I am keeping my box 24x7 on because it serves as dns on my small
> >> home wifi, not acceptable to me, because network is almost off at
> >> night (only phone) and I have my router as secondary dns.
> >
> > Just use Google's caches or OpenDNS. They do the job so much better
> > than you ever could. Why reinvent the wheel?
> >
> >
>
> Slow connection. See my previous reply to the list. I'm using pdnsd,
> which can persist records and has every damn feature I wanted.
>
Fair enough, but consider this:
If your connection is slow, the only thing you speeded up is the DNS
lookups. Thereafter, everything else is still as slow as it ever was.
And if you feel the need to speed up DNS lookups then the odds are very
good that "everything else" is too slow i.e. not exactly usable.
We get this a lot from our customers too, and the advise we give them
is to look closely at their traffic throttling. In almost every case
all UDP traffic has had the living crap throttled out of it somewhere
by folk that don't really think things through, severely affecting
dns and ntp as well as AV streaming.
Throttled DNS rapidly gets out of hand, IIRC the last time we did some
measurements it only takes around 5% of dns lookups to go wonky for the
situation to rapidly spiral out of control - when dns fails the cache
will try a TCP lookup and that's like wading through molasses.
Our advice to customers is to first unthrottle dns and ntp completely,
give it the highest possible priority (these are extremely light
protocols and seldom show up on the radar when you do this), and see
how that goes.
It just seems to me that you *might* be trying a very unusual solution
for a problem that is better handled one layer lower down.
--
Alan McKinnnon
alan.mckinnon@gmail.com
^ permalink raw reply [flat|nested] 15+ messages in thread
* Re: [gentoo-user] Best caching dns server?
2012-05-19 12:09 ` Pandu Poluan
@ 2012-05-20 20:14 ` Mick
2012-05-21 0:42 ` Pandu Poluan
2012-05-21 16:40 ` Tanstaafl
1 sibling, 1 reply; 15+ messages in thread
From: Mick @ 2012-05-20 20:14 UTC (permalink / raw
To: gentoo-user
[-- Attachment #1: Type: Text/Plain, Size: 1494 bytes --]
On Saturday 19 May 2012 13:09:45 Pandu Poluan wrote:
> On May 19, 2012 6:46 PM, "Dale" <rdalek1967@gmail.com> wrote:
> > Willie Matthews wrote:
> [le snip]
>
> > > You should really try changing you DNS server to some faster ones. I
> > > was having this same problem with my ISP or DSL modem with built in
> > > router taking a long time. I changed my DNS servers to Google DNS
> > > Servers (8.8.4.4 and 8.8.8.8) and haven't had a problem.
> > >
> > > My setup is a little different but all in all I would really suggest
> > > you try a DNS server outside of your ISP.
> >
> > I agree. My ISP is AT&T and I changed my DNS to Google's too. It is
> > very fast compared to AT&T's servers. I have had AT&T's servers not
> > respond for several seconds but Google's just seem to work.
>
> Here's the result of a test comparing the performance of public DNS servers
>
>
> http://www.thousandeyes.com/blog/public-dns-resolver-showdown
>
> Despite what the linked article said, in my experience, Level 3
> (4.2.2.[1-5]) is at least as fast as Google. I guess it depends on one's
> ISP. But both of them are mucho faster (and much stabler) than my ISP's DNS
> servers.
I understand that Level 3 4.2.2.2 is not a public DNS server:
http://www.tummy.com/Community/Articles/famous-dns-server/
If my recent experience is correct (when I was trying to set up proxychains)
connections to it are often dropped or at least throttled.
--
Regards,
Mick
[-- Attachment #2: This is a digitally signed message part. --]
[-- Type: application/pgp-signature, Size: 198 bytes --]
^ permalink raw reply [flat|nested] 15+ messages in thread
* Re: [gentoo-user] Best caching dns server?
2012-05-20 20:14 ` Mick
@ 2012-05-21 0:42 ` Pandu Poluan
0 siblings, 0 replies; 15+ messages in thread
From: Pandu Poluan @ 2012-05-21 0:42 UTC (permalink / raw
To: gentoo-user
[-- Attachment #1: Type: text/plain, Size: 1742 bytes --]
On May 21, 2012 3:19 AM, "Mick" <michaelkintzios@gmail.com> wrote:
>
> On Saturday 19 May 2012 13:09:45 Pandu Poluan wrote:
> > On May 19, 2012 6:46 PM, "Dale" <rdalek1967@gmail.com> wrote:
> > > Willie Matthews wrote:
> > [le snip]
> >
> > > > You should really try changing you DNS server to some faster ones. *
I*
> > > > was having this same problem with my ISP or DSL modem with built in
> > > > router taking a long time. I changed my DNS servers to Google DNS
> > > > Servers (8.8.4.4 and 8.8.8.8) and haven't had a problem.
> > > >
> > > > My setup is a little different but all in all I would really suggest
> > > > you try a DNS server outside of your ISP.
> > >
> > > I agree. My ISP is AT&T and I changed my DNS to Google's too. It is
> > > very fast compared to AT&T's servers. I have had AT&T's servers not
> > > respond for several seconds but Google's just seem to work.
> >
> > Here's the result of a test comparing the performance of public DNS
servers
> >
> >
> > http://www.thousandeyes.com/blog/public-dns-resolver-showdown
> >
> > Despite what the linked article said, in my experience, Level 3
> > (4.2.2.[1-5]) is at least as fast as Google. I guess it depends on one's
> > ISP. But both of them are mucho faster (and much stabler) than my ISP's
DNS
> > servers.
>
> I understand that Level 3 4.2.2.2 is not a public DNS server:
>
> http://www.tummy.com/Community/Articles/famous-dns-server/
>
Indeed.
>
> If my recent experience is correct (when I was trying to set up
proxychains)
> connections to it are often dropped or at least throttled.
>
Most likely overloaded. I myself use 4.2.2.[3-5].
BTW, thanks for that link. I never knew before that http://18.62.0.96/ is a
standard connectivity test ;-)
Rgds,
[-- Attachment #2: Type: text/html, Size: 2571 bytes --]
^ permalink raw reply [flat|nested] 15+ messages in thread
* Re: [gentoo-user] Best caching dns server?
2012-05-20 19:47 ` Alan McKinnon
@ 2012-05-21 0:43 ` Nilesh Govindrajan
2012-05-21 1:11 ` Michael Mol
0 siblings, 1 reply; 15+ messages in thread
From: Nilesh Govindrajan @ 2012-05-21 0:43 UTC (permalink / raw
To: gentoo-user
On Mon, May 21, 2012 at 1:17 AM, Alan McKinnon <alan.mckinnon@gmail.com> wrote:
>> Slow connection. See my previous reply to the list. I'm using pdnsd,
>> which can persist records and has every damn feature I wanted.
>>
>
> Fair enough, but consider this:
>
> If your connection is slow, the only thing you speeded up is the DNS
> lookups. Thereafter, everything else is still as slow as it ever was.
> And if you feel the need to speed up DNS lookups then the odds are very
> good that "everything else" is too slow i.e. not exactly usable.
>
> We get this a lot from our customers too, and the advise we give them
> is to look closely at their traffic throttling. In almost every case
> all UDP traffic has had the living crap throttled out of it somewhere
> by folk that don't really think things through, severely affecting
> dns and ntp as well as AV streaming.
>
> Throttled DNS rapidly gets out of hand, IIRC the last time we did some
> measurements it only takes around 5% of dns lookups to go wonky for the
> situation to rapidly spiral out of control - when dns fails the cache
> will try a TCP lookup and that's like wading through molasses.
>
> Our advice to customers is to first unthrottle dns and ntp completely,
> give it the highest possible priority (these are extremely light
> protocols and seldom show up on the radar when you do this), and see
> how that goes.
>
> It just seems to me that you *might* be trying a very unusual solution
> for a problem that is better handled one layer lower down.
>
Strictly speaking, my connection isn't too slow. I have a transfer
rate of 64 K/s (might sound ridiculous to you, but this costs 18$/mo
here).
OpenDNS lookups from my connection take something like 300 msec+ and
Google DNS lookups around 50 msec.
I can obviously use Google DNS, but as I said earlier, OpenDNS gives
me phishing protection and other that sort of stuff.
And hence I must use a local cache.
--
Nilesh Govindarajan
http://nileshgr.com
^ permalink raw reply [flat|nested] 15+ messages in thread
* Re: [gentoo-user] Best caching dns server?
2012-05-21 0:43 ` Nilesh Govindrajan
@ 2012-05-21 1:11 ` Michael Mol
0 siblings, 0 replies; 15+ messages in thread
From: Michael Mol @ 2012-05-21 1:11 UTC (permalink / raw
To: gentoo-user
On Sun, May 20, 2012 at 8:43 PM, Nilesh Govindrajan
<contact@nileshgr.com> wrote:
> On Mon, May 21, 2012 at 1:17 AM, Alan McKinnon <alan.mckinnon@gmail.com> wrote:
>>> Slow connection. See my previous reply to the list. I'm using pdnsd,
>>> which can persist records and has every damn feature I wanted.
>>>
>>
>> Fair enough, but consider this:
>>
>> If your connection is slow, the only thing you speeded up is the DNS
>> lookups. Thereafter, everything else is still as slow as it ever was.
>> And if you feel the need to speed up DNS lookups then the odds are very
>> good that "everything else" is too slow i.e. not exactly usable.
>>
>> We get this a lot from our customers too, and the advise we give them
>> is to look closely at their traffic throttling. In almost every case
>> all UDP traffic has had the living crap throttled out of it somewhere
>> by folk that don't really think things through, severely affecting
>> dns and ntp as well as AV streaming.
>>
>> Throttled DNS rapidly gets out of hand, IIRC the last time we did some
>> measurements it only takes around 5% of dns lookups to go wonky for the
>> situation to rapidly spiral out of control - when dns fails the cache
>> will try a TCP lookup and that's like wading through molasses.
>>
>> Our advice to customers is to first unthrottle dns and ntp completely,
>> give it the highest possible priority (these are extremely light
>> protocols and seldom show up on the radar when you do this), and see
>> how that goes.
>>
>> It just seems to me that you *might* be trying a very unusual solution
>> for a problem that is better handled one layer lower down.
>>
>
> Strictly speaking, my connection isn't too slow. I have a transfer
> rate of 64 K/s (might sound ridiculous to you, but this costs 18$/mo
> here).
> OpenDNS lookups from my connection take something like 300 msec+ and
> Google DNS lookups around 50 msec.
>
> I can obviously use Google DNS, but as I said earlier, OpenDNS gives
> me phishing protection and other that sort of stuff.
>
> And hence I must use a local cache.
Side note: Honestly, you should be using a local cache, regardless.
It'll improve performance for you, *especially* when there's any risk
of packet drops between you and the your ISP's core equipment. When I
was on a 6Mb/s-down ADSL connection, the improvement I experienced
simply from running bind9 as a recursive resolver was *massive*. I
still do so, even though I'm now on a pretty reliable cable
connection.
--
:wq
^ permalink raw reply [flat|nested] 15+ messages in thread
* Re: [gentoo-user] Best caching dns server?
2012-05-19 12:09 ` Pandu Poluan
2012-05-20 20:14 ` Mick
@ 2012-05-21 16:40 ` Tanstaafl
1 sibling, 0 replies; 15+ messages in thread
From: Tanstaafl @ 2012-05-21 16:40 UTC (permalink / raw
To: gentoo-user
On 2012-05-19 8:09 AM, Pandu Poluan <pandu@poluan.info> wrote:
> But stay away from OpenDNS like the plague. They are known to perform
> false resolve, especially if the domain being resolved does not exist.
Simple to disable, been using OpenDNS for many years, no problems
whatsoever...
^ permalink raw reply [flat|nested] 15+ messages in thread
end of thread, other threads:[~2012-05-21 16:42 UTC | newest]
Thread overview: 15+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2012-05-19 2:15 [gentoo-user] Best caching dns server? Nilesh Govindrajan
2012-05-19 10:59 ` Adam Carter
2012-05-19 11:13 ` Nilesh Govindrajan
2012-05-19 11:35 ` Willie Matthews
2012-05-19 11:42 ` Dale
2012-05-19 12:09 ` Pandu Poluan
2012-05-20 20:14 ` Mick
2012-05-21 0:42 ` Pandu Poluan
2012-05-21 16:40 ` Tanstaafl
2012-05-19 12:53 ` Nilesh Govindrajan
2012-05-19 16:36 ` Alan McKinnon
2012-05-20 0:45 ` Nilesh Govindrajan
2012-05-20 19:47 ` Alan McKinnon
2012-05-21 0:43 ` Nilesh Govindrajan
2012-05-21 1:11 ` Michael Mol
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox