Re: Caching-only Name server does Zone Updates
In article gm8o6b$1va...@sf1.isc.org, Ashish ashish@wipro.com wrote: Thank you Mark, Doupdate is followed by lot of statements like Db_update Match Please see the content below. = Doupdate(zone 0, savens x, flags y) Doupdate: dname 21.in-addr.arpa type 6 class 1 ttl 600 Db_update(21.in-addr.arpa, 0x12345, 0x56789, 087, 0x76543) match(0x9b430, 1, 6) 1, 6 db_update: flags = 0x19, sizes = 71, 71 (1) match(0x9123v, 1, 6) 1, 6 db_update: flags = 0x19, sizes = 71, 71 (1) match(0x9sd33, 1, 6) 1, 6 db_update: flags = 0x19, sizes = 71, 71 (1) match(0xdg6d8, 1, 6) 1, 6 db_update: flags = 0x19, sizes = 71, 71 (1) match(0x6abde, 1, 6) 1, 6 == Please correct me if I am wrong, I thought that for cache update it should update only one record. So why so many updates are been made. The response probably contained NS records in the Authority Section and the corresponding A records in the Additional Section. These update the cache as well. -- Barry Margolin, bar...@alum.mit.edu Arlington, MA *** PLEASE don't copy me on replies, I'll read them in the group *** ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
RE: Caching-only Name server does Zone Updates
Hi Barry, Thank you for your reply. There was a reverse lookup done as per the Debug content. We have 4 Name servers so there should be 4 response containing NS records in the Authority Section and the corresponding A records in the Additional Section. But we have thousands of statement like Db_update Match in the Debug file. Kindly advice. Kind Regards, Ashish -Original Message- Date: Tue, 03 Feb 2009 03:42:32 -0500 From: Barry Margolin bar...@alum.mit.edu Subject: Re: Caching-only Name server does Zone Updates To: comp-protocols-dns-b...@isc.org Message-ID: barmar-900c8b.03423203022...@mara100-84.onlink.net In article gm8o6b$1va...@sf1.isc.org, Ashish ashish@wipro.com wrote: Thank you Mark, Doupdate is followed by lot of statements like Db_update Match Please see the content below. = Doupdate(zone 0, savens x, flags y) Doupdate: dname 21.in-addr.arpa type 6 class 1 ttl 600 Db_update(21.in-addr.arpa, 0x12345, 0x56789, 087, 0x76543) match(0x9b430, 1, 6) 1, 6 db_update: flags = 0x19, sizes = 71, 71 (1) match(0x9123v, 1, 6) 1, 6 db_update: flags = 0x19, sizes = 71, 71 (1) match(0x9sd33, 1, 6) 1, 6 db_update: flags = 0x19, sizes = 71, 71 (1) match(0xdg6d8, 1, 6) 1, 6 db_update: flags = 0x19, sizes = 71, 71 (1) match(0x6abde, 1, 6) 1, 6 == Please correct me if I am wrong, I thought that for cache update it should update only one record. So why so many updates are been made. The response probably contained NS records in the Authority Section and the corresponding A records in the Additional Section. These update the cache as well. -- Barry Margolin, bar...@alum.mit.edu Arlington, MA *** PLEASE don't copy me on replies, I'll read them in the group *** Please do not print this email unless it is absolutely necessary. The information contained in this electronic message and any attachments to this message are intended for the exclusive use of the addressee(s) and may contain proprietary, confidential or privileged information. If you are not the intended recipient, you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately and destroy all copies of this message and any attachments. WARNING: Computer viruses can be transmitted via email. The recipient should check this email and any attachments for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by this email. www.wipro.com ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Caching-only Name server does Zone Updates
On 02.02.09 17:25, Ashish wrote: Our DNS is configured as Caching-only Name server. However, it's still performing Zone updates like a Slave Name Server. Is it possible that a Caching-only Name server performs Zone updates, if yes under what conditions is this possible. Zone updates work only if the zone is configured on the nameserver. Do you have any zones configured (other than .)? How do you know that it's performing zone updates? -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Due to unexpected conditions Windows 2000 will be released in first quarter of year 1901 ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
RE: Caching-only Name server does Zone Updates
Hello All, Thank you for your replies. Our configuration file is fairly simple (I have changed the domain name for security). domain example.group.net cache ./etc/dnscache We use BIND 4. Actually our DNS was doing lot of CPU utilization and when we started it in Debug mode we found that there was a reverse lookup for some IP address which was in the dnscache file. (dnscache is the root hint file) This started zone updates, as we can observe in the debug file which calls function db_update() Here is the debug file content (I have modified the IP address for security reasons. Here 21.x.x.x is one of the entries in dnscache file. I mean that there was a network address starting with 21 in our dnscache file) dgram from 1.2.3.4, 2 () ns_req() req: nlookup(5.6.7.21.in-addr.arpa) id 111 type=11 req: found '5.6.7.21.in-addr.arpa' as '21.in-addr.arpa' (cname=0) findns: np 0x6b41e findns: 2 NS's added for '21' ns_forw() qnew(x45gte8) nslookup(nsp=x2433d,qp=xfdgfv4) nslookup: NS server01.example.grp.net c1 t2 (x0) nslookup: 1 ns addrs nslookup: NS cerver01.example.grp.net c1 t2 (x0) nslookup: 2 ns addrs nslookup: 2 ns addrs total retrytime: nstime 0ms. schedretry(0x1dfd8, 4sec) Dgram from 21.x.x.x Ns_req() Qfindid(12345) USER response nsid= id Respose from upexpected source 21.x.x.x Stime z/z now yy/yy rtt x NS #2 addr 21.x.x.x used rtt y NS #1 21.x.x.x rtt now z Resp: ancount 0, aucount 1, arcount 0 Doupdate(zone 0, savens x, flags y) Doupdate: dname 21.in-addr.arpa type 6 class 1 ttl 600 Db_update(21.in-addr.arpa, 0x12345, 0x56789, 087, 0x76543) This is strange, there was NSLOOKUP for some IP 5.6.7.21 which caused zone updates and we do not have any zone specified in our configuration file. Kindly advice Thanks Ashish -Original Message- From: Niall O'Reilly [mailto:niall.orei...@ucd.ie] Sent: Monday, February 02, 2009 7:50 PM To: Ashish Cc: bind-users@lists.isc.org; niall.orei...@ucd.ie Subject: Re: Caching-only Name server does Zone Updates On Mon, 2009-02-02 at 17:25 +0530, Ashish wrote: Our DNS is configured as Caching-only Name server. How do you know? However, it's still performing Zone updates like a Slave Name Server. How many 'zone' sections are in your configuration? Why not post your configuration file to the list, so that we can see? /Niall Please do not print this email unless it is absolutely necessary. The information contained in this electronic message and any attachments to this message are intended for the exclusive use of the addressee(s) and may contain proprietary, confidential or privileged information. If you are not the intended recipient, you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately and destroy all copies of this message and any attachments. WARNING: Computer viruses can be transmitted via email. The recipient should check this email and any attachments for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by this email. www.wipro.com ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Caching-only Name server does Zone Updates
In message 009201c985c0$aff05cb0$f9281...@wipro74039c7ca, Ashish writes: Hello All, Thank you for your replies. Our configuration file is fairly simple (I have changed the domain name for security). You care about security yet you run BIND 4? domain example.group.net cache ./etc/dnscache We use BIND 4. Actually our DNS was doing lot of CPU utilization and when we started it in Debug mode we found that there was a reverse lookup for some IP address which was in the dnscache file. (dnscache is the root hint file) This started zone updates, as we can observe in the debug file which calls function db_update() Here is the debug file content (I have modified the IP address for security reasons. Here 21.x.x.x is one of the entries in dnscache file. I mean that there was a network address starting with 21 in our dnscache file) dgram from 1.2.3.4, 2 () ns_req() req: nlookup(5.6.7.21.in-addr.arpa) id 111 type=11 req: found '5.6.7.21.in-addr.arpa' as '21.in-addr.arpa' (cname=0) findns: np 0x6b41e findns: 2 NS's added for '21' ns_forw() qnew(x45gte8) nslookup(nsp=x2433d,qp=xfdgfv4) nslookup: NS server01.example.grp.net c1 t2 (x0) nslookup: 1 ns addrs nslookup: NS cerver01.example.grp.net c1 t2 (x0) nslookup: 2 ns addrs nslookup: 2 ns addrs total retrytime: nstime 0ms. schedretry(0x1dfd8, 4sec) Dgram from 21.x.x.x Ns_req() Qfindid(12345) USER response nsid= id Respose from upexpected source 21.x.x.x Stime z/z now yy/yy rtt x NS #2 addr 21.x.x.x used rtt y NS #1 21.x.x.x rtt now z Resp: ancount 0, aucount 1, arcount 0 Doupdate(zone 0, savens x, flags y) Doupdate: dname 21.in-addr.arpa type 6 class 1 ttl 600 Db_update(21.in-addr.arpa, 0x12345, 0x56789, 087, 0x76543) This is strange, there was NSLOOKUP for some IP 5.6.7.21 which caused zone updates and we do not have any zone specified in our configuration file. zone 0 is the cache. The cache was updated. Mark Kindly advice Thanks Ashish -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: mark_andr...@isc.org ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
RE: Caching-only Name server does Zone Updates
Thank you Mark, Doupdate is followed by lot of statements like Db_update Match Please see the content below. = Doupdate(zone 0, savens x, flags y) Doupdate: dname 21.in-addr.arpa type 6 class 1 ttl 600 Db_update(21.in-addr.arpa, 0x12345, 0x56789, 087, 0x76543) match(0x9b430, 1, 6) 1, 6 db_update: flags = 0x19, sizes = 71, 71 (1) match(0x9123v, 1, 6) 1, 6 db_update: flags = 0x19, sizes = 71, 71 (1) match(0x9sd33, 1, 6) 1, 6 db_update: flags = 0x19, sizes = 71, 71 (1) match(0xdg6d8, 1, 6) 1, 6 db_update: flags = 0x19, sizes = 71, 71 (1) match(0x6abde, 1, 6) 1, 6 == Please correct me if I am wrong, I thought that for cache update it should update only one record. So why so many updates are been made. Please advice. Thanks a lot Ashish -Original Message- From: mark_andr...@isc.org [mailto:mark_andr...@isc.org] Sent: Tuesday, February 03, 2009 11:32 AM To: Ashish Cc: niall.orei...@ucd.ie; bind-users@lists.isc.org Subject: Re: Caching-only Name server does Zone Updates In message 009201c985c0$aff05cb0$f9281...@wipro74039c7ca, Ashish writes: Hello All, Thank you for your replies. Our configuration file is fairly simple (I have changed the domain name for security). You care about security yet you run BIND 4? domain example.group.net cache ./etc/dnscache We use BIND 4. Actually our DNS was doing lot of CPU utilization and when we started it in Debug mode we found that there was a reverse lookup for some IP address which was in the dnscache file. (dnscache is the root hint file) This started zone updates, as we can observe in the debug file which calls function db_update() Here is the debug file content (I have modified the IP address for security reasons. Here 21.x.x.x is one of the entries in dnscache file. I mean that there was a network address starting with 21 in our dnscache file) dgram from 1.2.3.4, 2 () ns_req() req: nlookup(5.6.7.21.in-addr.arpa) id 111 type=11 req: found '5.6.7.21.in-addr.arpa' as '21.in-addr.arpa' (cname=0) findns: np 0x6b41e findns: 2 NS's added for '21' ns_forw() qnew(x45gte8) nslookup(nsp=x2433d,qp=xfdgfv4) nslookup: NS server01.example.grp.net c1 t2 (x0) nslookup: 1 ns addrs nslookup: NS cerver01.example.grp.net c1 t2 (x0) nslookup: 2 ns addrs nslookup: 2 ns addrs total retrytime: nstime 0ms. schedretry(0x1dfd8, 4sec) Dgram from 21.x.x.x Ns_req() Qfindid(12345) USER response nsid= id Respose from upexpected source 21.x.x.x Stime z/z now yy/yy rtt x NS #2 addr 21.x.x.x used rtt y NS #1 21.x.x.x rtt now z Resp: ancount 0, aucount 1, arcount 0 Doupdate(zone 0, savens x, flags y) Doupdate: dname 21.in-addr.arpa type 6 class 1 ttl 600 Db_update(21.in-addr.arpa, 0x12345, 0x56789, 087, 0x76543) This is strange, there was NSLOOKUP for some IP 5.6.7.21 which caused zone updates and we do not have any zone specified in our configuration file. zone 0 is the cache. The cache was updated. Mark Kindly advice Thanks Ashish -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: mark_andr...@isc.org Please do not print this email unless it is absolutely necessary. The information contained in this electronic message and any attachments to this message are intended for the exclusive use of the addressee(s) and may contain proprietary, confidential or privileged information. If you are not the intended recipient, you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately and destroy all copies of this message and any attachments. WARNING: Computer viruses can be transmitted via email. The recipient should check this email and any attachments for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by this email. www.wipro.com ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
