Thanks Greyhat. They're windows DNS servers (I know, I know. No choice). This is getting outside of the scope of ASSP now for SURE. I think I have narrowed down the problem, and it IS something with our DNS resolution.
DNS seems really fast except when doing a PTR lookup for an IP that has DNS servers that refuse the query. It can then take upwards of 8 seconds for my dns servers to ultimately reply: *** [127.0.0.1] can't find x.x.x.x.in-addr.arpa.: Server failed Can't think of why this is. Who knows, maybe it was always like this. On Fri, Sep 18, 2015 at 11:50 AM, Grayhat <gray...@gmx.net> wrote: > :: On Fri, 18 Sep 2015 17:46:12 +0200 > :: <20150918174612.00006...@gmx.net> > :: Grayhat <gray...@gmx.net> wrote: > > > :: On Fri, 18 Sep 2015 11:39:06 -0400 > > :: > > <CALhpkA=kdvR1myMUtmbpE_kAVc=R2Yb=cniu1tesxhwkmua...@mail.gmail.com> :: > > K Post <nntp.p...@gmail.com> wrote: > > > > > I can't imagine what could be going wrong with my DNS servers, but I > > > will absolutely dig deeper! Thanks for the fix and for pointing me > > > in the right direction. DNS issues are no joke. > > > > assuming your DNS servers are sitting behind a firewall, ensure that > > they're able to connect to external DNS servers on port 53 UDP *and* > > TCP, also ensure that "oversized" UDP packets used for EDNS are not > > dropped by some firewall rule > > > > https://en.wikipedia.org/wiki/Extension_mechanisms_for_DNS > > > > http://www.petenetlive.com/KB/Article/0000312.htm > > > > also (sorry, saw your previous reply after sending my message), since > you're running your own DNS servers, try enabling some logging on the > DNS servers and/or use the "dnstop" tool to monitor your DNS traffic > and check for issues > > http://dns.measurement-factory.com/tools/dnstop/ > > HTH > > > > > ------------------------------------------------------------------------------ > _______________________________________________ > Assp-test mailing list > Assp-test@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/assp-test > ------------------------------------------------------------------------------ _______________________________________________ Assp-test mailing list Assp-test@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/assp-test
