calculate request performance
I have a bind server with common installtion (not with DLZ etc). CPU for this server box is 2.0G (one core), memory is 1G DDR2, OS is Linux, named version is 9.6.0-P1. How many requests per second can bind handle under this hardware environment? (or please tell me how to calculate request performance of it). thanks. regards. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
name server zone list
Hi, I want to be able to produce a simple list of the zones on my DNS servers. Is there anyway to do this with dig or any other tool? I can currently transfer a single zone with dig @nameserver "zone" axfr but I want to see all zones hosted on my DNS server. -- Sandy Mackenzie The contents of this e-mail message and all attachments are intended for the confidential use of the addressee and where addressed to our client are the subject of solicitor and client privilege. Any retention, review, reproduction, distribution or disclosure other than by the addressee is prohibited. Please notify us immediately if we have transmitted this message to you in error. Thank you. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
RE: name server zone list
You say "my" DNS servers - if you own them, why not just look at the named.conf? "grep zone named.conf" should tell you pretty quickly. If you are using external hosting, you will need to talk to your provider. They should be able to provide you a list. t. -Original Message- From: bind-users-boun...@lists.isc.org [mailto:bind-users-boun...@lists.isc.org] On Behalf Of Sandy Mackenzie Sent: Friday, April 03, 2009 9:15 AM To: bind-users@lists.isc.org Subject: name server zone list Hi, I want to be able to produce a simple list of the zones on my DNS servers. Is there anyway to do this with dig or any other tool? I can currently transfer a single zone with dig @nameserver "zone" axfr but I want to see all zones hosted on my DNS server. -- Sandy Mackenzie The contents of this e-mail message and all attachments are intended for the confidential use of the addressee and where addressed to our client are the subject of solicitor and client privilege. Any retention, review, reproduction, distribution or disclosure other than by the addressee is prohibited. Please notify us immediately if we have transmitted this message to you in error. Thank you. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users - This transmission (including any attachments) may contain confidential information, privileged material (including material protected by the solicitor-client or other applicable privileges), or constitute non-public information. Any use of this information by anyone other than the intended recipient is prohibited. If you have received this transmission in error, please immediately reply to the sender and delete this information from your system. Use, dissemination, distribution, or reproduction of this transmission by unintended recipients is not authorized and may be unlawful. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: name server zone list
On Apr 3 2009, Sandy Mackenzie wrote: I want to be able to produce a simple list of the zones on my DNS servers. Is there anyway to do this with dig or any other tool? This one is hardy perennial, of course, but I've been working on an "index zone" in a certain local DNS context recently, and thinking how convenient it would have been if BIND had provided one for me (under class CHAOS, name "zones.bind" or something along those lines). I wonder whether this is on ISC's wish-list, and if so, how far down ... Of course, it would have to be disabled by default, or I can imagine people getting quite upset about the security implications. -- Chris Thompson Email: c...@cam.ac.uk ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: name server zone list
On Fri, Apr 3, 2009 at 10:55 AM, Chris Thompson wrote: > This one is hardy perennial, of course, but I've been working on an > "index zone" in a certain local DNS context recently, and thinking > how convenient it would have been if BIND had provided one for me > (under class CHAOS, name "zones.bind" or something along those lines). > I wonder whether this is on ISC's wish-list, and if so, how far down ... The issue with something like this is it apparently requires configuring views in order to be able to load zone(s) of non-default type IN. Configuring views isn't always desired. Perhaps an option to rndc though -- aRDy Music and Rick Dicaire present: http://www.ardynet.com http://www.ardynet.com:9000/ardymusic.ogg.m3u ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
bind 9.4 acache crashes
Anyone else seen crashes like these? Linux 2.6.18, bind 9.4.3-P1 03-Apr-2009 15:17:21.307 general: acache.c:393: INSIST(result == 0) failed 03-Apr-2009 15:17:21.307 general: exiting (due to assertion failure) Solaris 9, bind 9.4.3b2 03-Apr-2009 18:14:36.890 general: acache.c:1660: fatal error: 03-Apr-2009 18:14:36.891 general: RUNTIME_CHECK(((pthread_mutex_lock(((&acache->entrylocks[entry->locknum]))) == 0) ? 0 : 34) == 0) failed 03-Apr-2009 18:14:36.891 general: exiting (due to fatal error in library) Unfortunately, no cores were dumped.. conf directives: acache-enable yes; max-acache-size 128M; Cheers, Sotiris. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: name server zone list
On Apr 3 2009, R Dicaire wrote: On Fri, Apr 3, 2009 at 10:55 AM, Chris Thompson wrote: This one is hardy perennial, of course, but I've been working on an "index zone" in a certain local DNS context recently, and thinking how convenient it would have been if BIND had provided one for me (under class CHAOS, name "zones.bind" or something along those lines). I wonder whether this is on ISC's wish-list, and if so, how far down ... The issue with something like this is it apparently requires configuring views in order to be able to load zone(s) of non-default type IN. Configuring views isn't always desired. Perhaps an option to rndc though BIND already creates an internal view "_bind" with class CH to contain the zones version.bind, hostname.bind, authors.bind, etc. I was thinking in terms of zones.bind living there as well. Of course there's the barber-shaving question: should zones.bind contain an entry describing itself? -- Chris Thompson Email: c...@cam.ac.uk ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: 53/TCP port unresponsive
We've seen this repeatedly with our customers, usually evidenced by slaves that stop refreshing and eventually expire the zone. It seems to happen most on Mac OS X and Solaris, and less often (or perhaps never) on Linux. named just stops listening on the TCP port. If you execute "lsof -i: 53", you'll see that it's still listening on 127.0.0.1:53/TCP, but not on some other interface. UDP seems to be unaffected by this. The only solution we've found is to stop and restart named. Chris Buxton Professional Services Men & Mice On Apr 2, 2009, at 5:26 PM, Mark Koehler wrote: Greetings. We have 4 masters (rsync'd together) and a pair of load balancers each of which distributes queries to any of the 4. On the masters, we run Solaris 10 with BIND 9.5P1. Recently, one of the 4 stopped using TCP on port 53, but UDP traffic continued unaffected. What would cause the TCP port to stop? The port was unresponsive from the backside of the load balancers, and no DNS TCP packets came from the server either. Is there anything in BIND which would detect and block a potential DOS attack? Thanx, mrak ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: calculate request performance
On Apr 3, 2009, at 2:43 AM, Jeff Pang wrote: I have a bind server with common installtion (not with DLZ etc). CPU for this server box is 2.0G (one core), memory is 1G DDR2, OS is Linux, named version is 9.6.0-P1. How many requests per second can bind handle under this hardware environment? (or please tell me how to calculate request performance of it). There are way too many variables to answer this, and there is no hard and fast calculation to be made. The only way to find out is an empirical test. Load it up with realistic data and then use something like dnsperf to throw representative query traffic at it. Note that the choice of recursive queries vs iterative queries will make a huge difference in your results. Some of the variables left unanswered: - Recursive or iterative queries, or a combination? - Network speed, latency, and traffic level - CPU type (i.e. an Intel Pentium 4 is much more efficient per clock cycle than a Via C3) - Exact memory speed, bandwidth, and latency - System tuning And even if you could quantify all of this somehow, there's still no calculation that I know of to turn that into any kind of realistic "queries/sec" value. Chris Buxton Professional Services Men & Mice ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: name server zone list
On Fri, Apr 3, 2009 at 12:25 PM, Chris Thompson wrote: > BIND already creates an internal view "_bind" with class CH to contain > the zones version.bind, hostname.bind, authors.bind, etc. I was thinking > in terms of zones.bind living there as well. I'd forgotten about this. > Of course there's the barber-shaving question: should zones.bind contain > an entry describing itself? In my opinion, no. There would need to be additional security directives, and possibly general options directives to control access to your proposed bind class. I'd be more in favor of something like this be incorporated into stats, accessible via rndc, or possible a new rndc command that dumps just loaded zone names. ACL mechanisms already exist to control access to rndc control port, and wouldn't require possible additional general options or possible additional security directives to control access to that class. $0.02 -- aRDy Music and Rick Dicaire present: http://www.ardynet.com http://www.ardynet.com:9000/ardymusic.ogg.m3u ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
RE: name server zone list
>BIND already creates an internal view "_bind" with class CH to contain the zones version.bind, hostname.bind, authors.bind, etc. I was thinking in >terms of zones.bind living there as well. >Of course there's the barber-shaving question: should zones.bind contain an entry describing itself? My view would be that it should list every zone being answered for by the server, so it should include itself. Maybe it could be prefixed/suffixed/named in a pattern so it can be removed easily from a listing, but I know I'd like to be able to see every zone being loaded on my server (including empty zones). $0.02 CDN T. - This transmission (including any attachments) may contain confidential information, privileged material (including material protected by the solicitor-client or other applicable privileges), or constitute non-public information. Any use of this information by anyone other than the intended recipient is prohibited. If you have received this transmission in error, please immediately reply to the sender and delete this information from your system. Use, dissemination, distribution, or reproduction of this transmission by unintended recipients is not authorized and may be unlawful. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: name server zone list
On Apr 3, 2009, at 10:55 AM, Todd Snyder wrote: BIND already creates an internal view "_bind" with class CH to contain the zones version.bind, hostname.bind, authors.bind, etc. I was thinking in >terms of zones.bind living there as well. Of course there's the barber-shaving question: should zones.bind contain an entry describing itself? My view would be that it should list every zone being answered for by the server, so it should include itself. Maybe it could be prefixed/suffixed/named in a pattern so it can be removed easily from a listing, but I know I'd like to be able to see every zone being loaded on my server (including empty zones). I agree with Rick Dicaire that this should not be done as a zone at all. Instead, this should be implemented in rndc. I do agree with the premise that it would be nice to be able to have a list of all zones on the server. Chris Buxton Professional Services Men & Mice ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
RE: name server zone list
> I agree with Rick Dicaire that this should not be done as a zone at all. > Instead, this should be implemented in rndc. I do agree with the premise that it > would be nice to be able to have a list of all zones on the server. I would tend to agree that rndc is the best place for it, except in places where doing the "r" part of rndc isn't possible. If you're in a tightly controlled environment, where rndc isn't used because of security/firewalls, you'd be stuck using another method to get the data, instead of utilizing a data channel that already exists. Additionally, there may well be times where I'd want to give access to people to see what zones are on the server, without giving them access to the console, or to run rndc. This a NOC doing troubleshooting - they may not have access to the box, or be able to use RNDC, but it would be handy if they could look and see what zones are loaded on the server. Granted, these are edge cases really, but ones where having the data available as a zone would be more useful than through rndc. Any which way, having access to the data would be good. t. - This transmission (including any attachments) may contain confidential information, privileged material (including material protected by the solicitor-client or other applicable privileges), or constitute non-public information. Any use of this information by anyone other than the intended recipient is prohibited. If you have received this transmission in error, please immediately reply to the sender and delete this information from your system. Use, dissemination, distribution, or reproduction of this transmission by unintended recipients is not authorized and may be unlawful. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: name server zone list
The entire list of zones is available in XML format in the statistics channel in 9.5 Yep, you need to parse for it, but it's there... AlanC signature.asc Description: OpenPGP digital signature ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: name server zone list
On Fri, Apr 3, 2009 at 2:08 PM, Alan Clegg wrote: > The entire list of zones is available in XML format in the statistics > channel in 9.5 > > Yep, you need to parse for it, but it's there... Hah beautiful, why reinvent the wheel :) I've not yet moved to 9.5 simply because I haven't had the time to modify perl scripts I use that read data from a 9.4 stats file and input into mrtg/rrdtool, but with the featureset in 9.5 regarding logging and stats, I'm going to have to make time. -- aRDy Music and Rick Dicaire present: http://www.ardynet.com http://www.ardynet.com:9000/ardymusic.ogg.m3u ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: name server zone list
Besides all the methods discussed, you could invent your own zone that has this data in a format of your choosing., e.g. example.com.myzones.example.com TXT "example.com" example2.com.myzones.example.com TXT "example2.com" Then: dig @nameserver axfr myzones.example.com Your design creativity and your self-discipline in always adding a record for each zone are your only limitations. If you wish to get really fancy, you could script the rebuilding of your named.conf file to do so using data gathered with this dig command. John On Apr 3, 2009, at 9:15 AM, Sandy Mackenzie wrote: Hi, I want to be able to produce a simple list of the zones on my DNS servers. Is there anyway to do this with dig or any other tool? I can currently transfer a single zone with dig @nameserver "zone" axfr but I want to see all zones hosted on my DNS server. -- Sandy Mackenzie The contents of this e-mail message and all attachments are intended for the confidential use of the addressee and where addressed to our client are the subject of solicitor and client privilege. Any retention, review, reproduction, distribution or disclosure other than by the addressee is prohibited. Please notify us immediately if we have transmitted this message to you in error. Thank you. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: DLZ Binary for Windows
Hal, All the drivers work on both windows and linux. If a binary windows installer isn't supplied with the backend DB options you need you can build it yourself. Some old instructions are here: http://article.gmane.org/gmane.network.dns.bind9.dlz/35/match=windows+compile Sorry, I'm too busy to help further. Rob - Original Message > From: Danny Mayer > To: Hal Dell > Cc: "bind-users@lists.isc.org" > Sent: Thursday, April 2, 2009 5:28:46 PM > Subject: Re: DLZ Binary for Windows > > Hal Dell wrote: > > Hello... Anyone know of a place to download a Windows Binary > > Installation Kit for recent version of Bind with DLZ option enabled. As > > I understand it -- this feature is a compile time option. If not -- is > > it easy to compile with this option on? > > > > If you are asking about a backend interface into a database then the > work has not been done for windows. If you want it done then there is a > cost involved in getting the work done and ISC will be happy to provide > you a quote. > > Danny > > -- > This message has been scanned for viruses and > dangerous content by MailScanner, and is > believed to be clean. > > ___ > bind-users mailing list > bind-users@lists.isc.org > https://lists.isc.org/mailman/listinfo/bind-users ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: name server zone list
On Fri, 2009-04-03 at 15:26 -0400, John Wobus wrote: > Besides all the methods discussed, you could invent your own zone that > has this data in a format Or Google for "vixie metazone" (without the quotes). /Niall ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: 53/TCP port unresponsive
There is no such version as BIND 9.5P1. There are both BIND 9.5.0-P1 and BIND 9.5.1-P1. If Mark is using BIND 9.5.0-P1 then I would recommend upgrading. Mark In message , Chris Buxton writes: > We've seen this repeatedly with our customers, usually evidenced by > slaves that stop refreshing and eventually expire the zone. It seems > to happen most on Mac OS X and Solaris, and less often (or perhaps > never) on Linux. > > named just stops listening on the TCP port. If you execute "lsof -i: > 53", you'll see that it's still listening on 127.0.0.1:53/TCP, but not > on some other interface. UDP seems to be unaffected by this. > > The only solution we've found is to stop and restart named. > > Chris Buxton > Professional Services > Men & Mice > > On Apr 2, 2009, at 5:26 PM, Mark Koehler wrote: > > > Greetings. > > > > We have 4 masters (rsync'd together) and a pair of load balancers > > each of which distributes queries to any of the 4. On the masters, > > we run Solaris 10 with BIND 9.5P1. Recently, one of the 4 stopped > > using TCP on port 53, but UDP traffic continued unaffected. What > > would cause the TCP port to stop? The port was unresponsive from > > the backside of the load balancers, and no DNS TCP packets came from > > the server either. Is there anything in BIND which would detect and > > block a potential DOS attack? > > > > Thanx, > > mrak > > ___ > > bind-users mailing list > > bind-users@lists.isc.org > > https://lists.isc.org/mailman/listinfo/bind-users > > ___ > bind-users mailing list > bind-users@lists.isc.org > https://lists.isc.org/mailman/listinfo/bind-users -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: mark_andr...@isc.org ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
C/C++ version Load balancer DNS
Hi, Is there any C/C++ version load balancer available? As I know we have lbnamed which is Perl based load balancer. Or can we do a kind of load balancer using any other mechanism over DNS? It will be a great help if anybody can direct be in this regard. Thanks, Mallappa ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Round robin load distribution among servers does not work properly
Hi, I was trying to do load balancing of client request among configured servers using internal DNS server, I get proper load balaning (DNS response with top most IP address going with proper round robin fashio) for odd number of IP addresses. But it does not give same bevior for even number of IP addresses. For example: If I have configured x.y.z.1, x.y.z.2, x.y.z.3, I get following combinations in dig response: x.y.z.1 x.y.z.2 x.y.z.3 x.y.z.2 x.y.z.3 x.y.z.1 x.y.z.3 x.y.z.1 x.y.z.2 And this repeats, giving round robin distribution. However, if I add one more IP address to the zone list (x.y.z.4), I get only following combinations: x.y.z.1 x.y.z.2 x.y.z.3 x.y.z.4 and x.y.z.3 x.y.z.4 x.y.z.1 x.y.z.2 It gets repeated. I will never get x.y.z.2 and x.y.z.4 as top entries in this response. Can anybody tell me why this limitation and is there any sollution to resove this problem? Thanks in advance. Mallappa ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: C/C++ version Load balancer DNS
You can use BIND itself as a load-balancer. What's your goal? What's your current load? What's your anticipated load 12 months from now? What kind of equipment do you have available? /Jonathan On Fri, Apr 3, 2009 at 2:37 PM, Mallappa Pallakke wrote: > Hi, > Is there any C/C++ version load balancer available? As I know we have > lbnamed which is Perl based load balancer. > > Or can we do a kind of load balancer using any other mechanism over DNS? > > It will be a great help if anybody can direct be in this regard. > > Thanks, > Mallappa > ___ > bind-users mailing list > bind-users@lists.isc.org > https://lists.isc.org/mailman/listinfo/bind-users > ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: C/C++ version Load balancer DNS
On Apr 3, 2:49 pm, Jonathan Petersson wrote: > You can use BIND itself as a load-balancer. > > What's your goal? > What's your current load? > What's your anticipated load 12 months from now? > What kind of equipment do you have available? > > /Jonathan > > On Fri, Apr 3, 2009 at 2:37 PM, Mallappa Pallakke wrot= > e: > > > > > =A0Hi, > > =A0Is there any C/C++ version load balancer available? As I know we have > > lbnamed which is Perl based load balancer. > > > =A0Or can we do a kind of load balancer using any other mechanism over DN= > S? > > > =A0It will be a great help if anybody can direct be in this regard. > > > =A0Thanks, > > =A0Mallappa > > ___ > > bind-users mailing list > > bind-us...@lists.isc.org > >https://lists.isc.org/mailman/listinfo/bind-users > > ___ > bind-users mailing list > bind-us...@lists.isc.orghttps://lists.isc.org/mailman/listinfo/bind-users- > Hide quoted text - > > - Show quoted text - Using DNS, I want to do load balancing of client requests among my available servers dynamically. In realtime requirements, any/many servers among the configured me be down or overloaded. I want to have control over distribution of load to these servers. I want to have a common FQDN to the clients and they know only FQDN. I would like to have 10/20 servers handling the client requests. When ever a server goes down, all the requests (thousands) it was handling, should come to remaining available servers quickly (assume within few seconds). I feel we can use DNS for this purpose, but doing load balance in realtime? Please give me your suggession. Thanks, Mallappa Pallakke ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: name server zone list
On Apr 3, 2009, at 12:42 PM, Niall O'Reilly wrote: On Fri, 2009-04-03 at 15:26 -0400, John Wobus wrote: Besides all the methods discussed, you could invent your own zone that has this data in a format Or Google for "vixie metazone" (without the quotes). /Niall Or search the archives for Kevin Darcy's documentation of using PTR records for this purpose, because PTR records take advantage of domain name compression. Chris Buxton Professional Services Men & Mice ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: name server zone list
I use PTR instead of TXT records for this, since PTRs can benefit from label compression. - Kevin John Wobus wrote: Besides all the methods discussed, you could invent your own zone that has this data in a format of your choosing., e.g. example.com.myzones.example.com TXT "example.com" example2.com.myzones.example.com TXT "example2.com" Then: dig @nameserver axfr myzones.example.com Your design creativity and your self-discipline in always adding a record for each zone are your only limitations. If you wish to get really fancy, you could script the rebuilding of your named.conf file to do so using data gathered with this dig command. John On Apr 3, 2009, at 9:15 AM, Sandy Mackenzie wrote: Hi, I want to be able to produce a simple list of the zones on my DNS servers. Is there anyway to do this with dig or any other tool? I can currently transfer a single zone with dig @nameserver "zone" axfr but I want to see all zones hosted on my DNS server. -- Sandy Mackenzie The contents of this e-mail message and all attachments are intended for the confidential use of the addressee and where addressed to our client are the subject of solicitor and client privilege. Any retention, review, reproduction, distribution or disclosure other than by the addressee is prohibited. Please notify us immediately if we have transmitted this message to you in error. Thank you. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: C/C++ version Load balancer DNS
Using DNS, I want to do load balancing of client requests among my available servers dynamically. In realtime requirements, any/many servers among the configured me be down or overloaded. I want to have control over distribution of load to these servers. I want to have a common FQDN to the clients and they know only FQDN. I would like to have 10/20 servers handling the client requests. When ever a server goes down, all the requests (thousands) it was handling, should come to remaining available servers quickly (assume within few seconds). I feel we can use DNS for this purpose, but doing load balance in realtime? I don't believe you will be successful at this with just DNS. The problem is that you want client connections switched over in case of a server failure. My understanding is that web browsers will not honor your TTL's. (This is how it was the last time I operated a production web server cluster, back in medieval times. I don't see why things would have changed.) What you need is a load balancing solution at the HTTP level. Preferably more than one, such that the devices can share an IP together in some kind of fault-tolerant way. Either way, if it were me, I would start my search at the F5 website. http://www.f5.com/solutions/availability/ Chris Buxton Professional Services Men & Mice ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: C/C++ version Load balancer DNS
On Apr 3, 4:11 pm, Chris Buxton wrote: > > Using DNS, I want to do load balancing of client requests among my > > available servers dynamically. > > In realtime requirements, any/many servers among the configured me be > > down or overloaded. > > > I want to have control over distribution of load to these servers. I > > want to have a common FQDN to the clients and they know only FQDN. I > > would like to have 10/20 servers handling the client requests. When > > ever a server goes down, all the requests (thousands) it was handling, > > should come to remaining available servers quickly (assume within few > > seconds). > > > I feel we can use DNS for this purpose, but doing load balance in > > realtime? > > I don't believe you will be successful at this with just DNS. The > problem is that you want client connections switched over in case of a > server failure. My understanding is that web browsers will not honor > your TTL's. (This is how it was the last time I operated a production > web server cluster, back in medieval times. I don't see why things > would have changed.) > > What you need is a load balancing solution at the HTTP level. > Preferably more than one, such that the devices can share an IP > together in some kind of fault-tolerant way. > > Either way, if it were me, I would start my search at the F5 > website.http://www.f5.com/solutions/availability/ > > Chris Buxton > Professional Services > Men & Mice > > ___ > bind-users mailing list > bind-us...@lists.isc.orghttps://lists.isc.org/mailman/listinfo/bind-users Hi Chris, I have these servers located on the same system (paraller processing - loosely coupled). I will know the load on these servers at realtime and for new connections, I want to do proper load balance. Basically, I want to send least loaded server IP address in the DNS response so that the new client connection goes to the least loaded server. And if any server goes down, my client application will do DNS query and I will distribute these new connections among available servers. This sollution which I am thinking is for some telecom application and not for web browsers. I kown that TTL for my requirement should be ZERO, so that no cashing happens. Please tell why we can not use DNS sollution for this. Thanks, Mallappa ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: C/C++ version Load balancer DNS
MSP wrote: On Apr 3, 4:11 pm, Chris Buxton wrote: Using DNS, I want to do load balancing of client requests among my available servers dynamically. In realtime requirements, any/many servers among the configured me be down or overloaded. I want to have control over distribution of load to these servers. I want to have a common FQDN to the clients and they know only FQDN. I would like to have 10/20 servers handling the client requests. When ever a server goes down, all the requests (thousands) it was handling, should come to remaining available servers quickly (assume within few seconds). I feel we can use DNS for this purpose, but doing load balance in realtime? I don't believe you will be successful at this with just DNS. The problem is that you want client connections switched over in case of a server failure. My understanding is that web browsers will not honor your TTL's. (This is how it was the last time I operated a production web server cluster, back in medieval times. I don't see why things would have changed.) What you need is a load balancing solution at the HTTP level. Preferably more than one, such that the devices can share an IP together in some kind of fault-tolerant way. Either way, if it were me, I would start my search at the F5 website.http://www.f5.com/solutions/availability/ Chris Buxton Professional Services Men & Mice ___ bind-users mailing list bind-us...@lists.isc.orghttps://lists.isc.org/mailman/listinfo/bind-users Hi Chris, I have these servers located on the same system (paraller processing - loosely coupled). I will know the load on these servers at realtime and for new connections, I want to do proper load balance. Basically, I want to send least loaded server IP address in the DNS response so that the new client connection goes to the least loaded server. And if any server goes down, my client application will do DNS query and I will distribute these new connections among available servers. This sollution which I am thinking is for some telecom application and not for web browsers. I kown that TTL for my requirement should be ZERO, so that no cashing happens. Please tell why we can not use DNS sollution for this. If this is for load-balancing which is strictly internal to your own network(s) (where TTL=0 might be acceptable), where the client/server interaction is non-web-based (thus eliminating browser caching from the equation), and the client abort/retry/checkpoint/restart logic is as sophisticated as you describe it above, then you might be able to use DNS somewhat effectively, without any investment in hardware or specialized load-balancer products. But, I doubt that any package already exists to support this very narrow set of requirements. You'd probably have to write it yourself. - Kevin ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: C/C++ version Load balancer DNS
On Apr 3, 2009, at 4:31 PM, MSP wrote: On Apr 3, 4:11 pm, Chris Buxton wrote: Using DNS, I want to do load balancing of client requests among my available servers dynamically. In realtime requirements, any/many servers among the configured me be down or overloaded. I want to have control over distribution of load to these servers. I want to have a common FQDN to the clients and they know only FQDN. I would like to have 10/20 servers handling the client requests. When ever a server goes down, all the requests (thousands) it was handling, should come to remaining available servers quickly (assume within few seconds). I feel we can use DNS for this purpose, but doing load balance in realtime? I don't believe you will be successful at this with just DNS. The problem is that you want client connections switched over in case of a server failure. My understanding is that web browsers will not honor your TTL's. (This is how it was the last time I operated a production web server cluster, back in medieval times. I don't see why things would have changed.) What you need is a load balancing solution at the HTTP level. Preferably more than one, such that the devices can share an IP together in some kind of fault-tolerant way. Either way, if it were me, I would start my search at the F5 website.http://www.f5.com/solutions/availability/ Chris Buxton Professional Services Men & Mice ___ bind-users mailing list bind-us...@lists.isc.orghttps://lists.isc.org/mailman/listinfo/bind- users Hi Chris, I have these servers located on the same system (paraller processing - loosely coupled). I will know the load on these servers at realtime and for new connections, I want to do proper load balance. Basically, I want to send least loaded server IP address in the DNS response so that the new client connection goes to the least loaded server. And if any server goes down, my client application will do DNS query and I will distribute these new connections among available servers. This sollution which I am thinking is for some telecom application and not for web browsers. I kown that TTL for my requirement should be ZERO, so that no cashing happens. Please tell why we can not use DNS sollution for this. Because browsers cache DNS results, often ignoring TTL's. In my (admittedly ancient) experience, browsers would cache the last x number of DNS results they got, where x was something like 50 or 100. And a result to be cached was equal to the first IP address in the DNS result - all other data was discarded. Therefore, if one server of your cluster goes down, connections don't switch to other available servers. They just fail. Now IE 7 and later, I have been told, behaves differently. But I believe other browsers still behave this way. DNS-based load balancing, in my experience, is not up to the demanding task you have in mind. Chris Buxton Professional Services Men & Mice ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
RE: C/C++ version Load balancer DNS
> Original Message > Subject: Re: C/C++ version Load balancer DNS > From: Chris Buxton > Date: Fri, April 03, 2009 4:11 pm > To: Bind Users Mailing List > > > Either way, if it were me, I would start my search at the F5 website. > http://www.f5.com/solutions/availability/ > F5's BGI-IP works also well on DNS load balancing. regards. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: C/C++ version Load balancer DNS
> Using DNS, I want to do load balancing of client requests among my > available servers dynamically. > In realtime requirements, any/many servers among the configured me be > down or overloaded. > > I want to have control over distribution of load to these servers. I > want to have a common FQDN to the clients and they know only FQDN. I > would like to have 10/20 servers handling the client requests. When > ever a server goes down, all the requests (thousands) it was handling, > should come to remaining available servers quickly (assume within few > seconds). > > I feel we can use DNS for this purpose, but doing load balance in > realtime? I think you are looking the wrong way. DNS doesn't change as quickly as you are hoping it does. There's ISP caches, OS caches, and application caches. Most of these even cache failed lookups and a lot of times they also ignore TTL's. I've done what you are thinking of (with the exception of the 10 idle servers (which makes no sense to me)) with OpenBSD's relayd. If you want to spend lots of money then an F5 solution would do the trick as well. -Bryan ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
