Yes, in fact!
From: John Cook [mailto:john.c...@pfsf.org] Sent: Thursday, June 03, 2010 11:16 AM To: NT System Admin Issues Subject: RE: Spotty DNS forwarding killing us Are you on the MFN (Florida DMS) network? We just brought up a site two days ago with some similar issues - internal is fine but going out to the internet is sketchy. John W. Cook Systems Administrator Partnership For Strong Families 315 SE 2nd Ave Gainesville, Fl 32601 Office (352) 393-2741 x320 Cell (352) 215-6944 Fax (352) 393-2746 MCSE, MCTS, MCP+I, A+, N+, VSP4, VTSP4 From: John Hornbuckle [mailto:john.hornbuc...@taylor.k12.fl.us] Sent: Thursday, June 03, 2010 11:12 AM To: NT System Admin Issues Subject: Spotty DNS forwarding killing us We started having a problem yesterday that's continuing today, and I'm not sure how to track down the cause. The issue is that we're getting sporadic-but fairly regular-DNS lookup timeouts that are killing our Internet connectivity. Here's a sample nslookup: > www.nbc.com<http://www.nbc.com> Server: aoc-pet300.taylor.k12.fl.us Address: 10.11.7.13 DNS request timed out. timeout was 2 seconds. Non-authoritative answer: Name: a1669.b.akamai.net Addresses: 77.67.87.123 77.67.87.91 Aliases: www.nbc.com<http://www.nbc.com> www.nbc.com.edgesuite.net<http://www.nbc.com.edgesuite.net> > Notice that the first request timed out. Sometimes I'll get two or three timeouts before the name is resolved, and sometimes the name won't resolve at all without me trying a second time. This is happening regularly enough that it makes web browsing much slower for all of my users. Each AD site on our network has its own DNS server (aoc-pet300 in my site's case), and these servers are configured to forward requests to our ISP's servers. To determine if those servers were the problem, I configured my site's server to forward to Google's public servers (8.8.8.8 and 8.8.4.4) before my ISP's. No change in the results. When I point nslookup directly to my ISP's or Google's DNS servers and do my lookups against that rather than having my local server forward them, I get no timeouts. All of the servers at my individual sites are exhibiting the same problem, although the others are still configured to forward only to my ISP and not Google. Local lookups of IP addresses and host names on my own network (i.e., those that don't have to be forwarded) are popping right up-so it's not as though everything my DNS servers do is slow. It's only the external forwarding that's problematic. Traceroutes and pings to the external DNS servers show no problems. So I'm stumped. What the heck could be going on here? John Hornbuckle MIS Department Taylor County School District www.taylor.k12.fl.us NOTICE: Florida has a broad public records law. Most written communications to or from this entity are public records that will be disclosed to the public and the media upon request. E-mail communications may be subject to public disclosure. ________________________________ CONFIDENTIALITY STATEMENT: The information transmitted, or contained or attached to or with this Notice is intended only for the person or entity to which it is addressed and may contain Protected Health Information (PHI), confidential and/or privileged material. Any review, transmission, dissemination, or other use of, and taking any action in reliance upon this information by persons or entities other than the intended recipient without the express written consent of the sender are prohibited. This information may be protected by the Health Insurance Portability and Accountability Act of 1996 (HIPAA), and other Federal and Florida laws. Improper or unauthorized use or disclosure of this information could result in civil and/or criminal penalties. Consider the environment. Please don't print this e-mail unless you really need to. This email and any attached files are confidential and intended solely for the intended recipient(s). If you are not the named recipient you should not read, distribute, copy or alter this email. Any views or opinions expressed in this email are those of the author and do not represent those of the company. Warning: Although precautions have been taken to make sure no viruses are present in this email, the company cannot accept responsibility for any loss or damage that arise from the use of this email or attachments. NOTICE: Florida has a broad public records law. Most written communications to or from this entity are public records that will be disclosed to the public and the media upon request. E-mail communications may be subject to public disclosure. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~