[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [ossig] Getting bind to stop contacting the root servers....
I would suggest the first part of the investigation
is whether bind is doing this 'spontaneously' or is
some other client application requesting DNS information
every 15 minutes?
You could try using something like snort to sniff for
packets on DNS port (TCP/53 and UDP/53, if I remember)
to see which client (if any) is creating the traffic.
Even installing a DNS caching server like pdnsd might
not solve things, maybe if a client is requesting a site
regularly that is set to have a very short DNS timeout
(lots of people do this, it's selfish but it can help
them achieve some stuff like poor-mans-failover)
you might still get regular requests.
Maybe there's a way to configure diald so it won't dial
out if the request is to certain IP addresses? You
could add the root servers there, but maybe that would
have some negative side effects?
Imran
william/atsc.org.my wrote:
Dear all,
I have been messing around with diald lately. Everything
works fine except that the darn bind9 that i am running
keeps trying to contact the root servers. The is causes the
ppp0 interface to go up every 10-15 min. I could use the
firewall or diald to stop the packets, but i was wondering
is there any way to get bind to stop generating the packets?
I would appreciate any help which you guys could give.
william wong
------------------------------------------------------------
To unsubscribe: send mail to ossig-request@mncc.com.my
with "unsubscribe ossig" in the body of the message
--
Imran William Smith
Project Manager, Open Source Development,
MIMOS Berhad, Malaysia
Asian Open Source Centre : http://www.asiaosc.org
MIMOS Open Source : http://opensource.mimos.my
------------------------------------------------------------
To unsubscribe: send mail to ossig-request@mncc.com.my
with "unsubscribe ossig" in the body of the message