On Fri, Apr 01, 2016 at 09:48:01PM +0000, Mike Mitchell wrote: > Have you checked the Kernel's connection tracking statistics? > Here's a link: > https://kb.isc.org/article/AA-01183/0/Linux-connection-tracking-and-DNS.html > > I've had to increase some network parameters on our busy > nameservers. I put the following in /etc/sysctl.conf
Did you try disabling connection tracking for UDP DNS, as the referenced article suggests? > net.netfilter.nf_conntrack_udp_timeout_stream = 45 > net.nf_conntrack_max = 500000 > net.ipv4.neigh.default.gc_thresh1 = 512 > net.ipv4.neigh.default.gc_thresh2 = 1024 > net.ipv4.neigh.default.gc_thresh3 = 2048 > net.ipv4.tcp_max_syn_backlog = 4096 > net.ipv4.tcp_fin_timeout = 30 > net.ipv4.tcp_tw_recycle = 1 -- http://rob0.nodns4.us/ Offlist GMX mail is seen only if "/dev/rob0" is in the Subject: _______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users