On Oct 22, 2013, at 8:29 PM, brett smith <brett.s9...@gmail.com> wrote:
> Yes tuning off IPTABLES conn-tracking makes a huge difference. I also > followed: > > https://access.redhat.com/site/solutions/304713 > https://access.redhat.com/site/solutions/168483 > > I still see some SYN_SENT from Windows PC's on tcp port 53 on the DNS > cache server. You've cured the symptoms, not the illness. You really, REALLY need to figure out why your clients are doing TCP. You'll see a world of difference when you solve this part of the puzzle. AlanC -- Alan Clegg | +1-919-355-8851 | a...@clegg.com
signature.asc
Description: Message signed with OpenPGP using GPGMail
_______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
