Multiple DNS queries for same IP address
Pete Ehlke
pde at ehlke.net
Tue Feb 11 16:39:51 UTC 2003
On Tue, Feb 11, 2003 at 04:37:13AM -0800, Bernard Shaw wrote:
>
> In the logs on the Unix servers we intermittenly see hundreds of
> queries for an IP address ('A' record) logged in less than a second.
> This continues for several seconds until we hit a 'no more recursive
> clients: quota reached' error. We see this problem regularly, but
> with different addresses on each occasion.
> The queries have all been forwarded from the Windows 2000 servers, and
> so are originating from within our PC network.
> The servers are all firewalled and cannot be hit externally.
>
There is a known bug in some versions of either the M$ resolver code or
the M$ name server that causes it to ask for the A record of an IP
address. Track down the machines that are making the requests and patch
them.
-Pete
More information about the bind-users
mailing list