HELP - My BIND 9 config is VERY SLOW! VERY SLOW!

Mark_Andrews at isc.org Mark_Andrews at isc.org
Tue Feb 18 20:32:28 UTC 2003


> Once again I decided to set up a dns server on my linix box (RH 8 -
> PII 266).  I've run Bind in the past with excellent success on my home
> network (cable feed).
> 
> Working with the DNS How-To (Nicolai Langfeldt  v9.0 12-200-2001) I've
> used all the provided config's in the how-to and made changes
> named.conf in the forwarder section for my ISP dns.
> 
> This is a dig result, localhost.
> 
>   [root at utah root]# dig -x 172.0.0.1
> 
> ; <<>> DiG 9.2.1 <<>> -x 172.0.0.1
> ;; global options:  printcmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61008
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
> 
> ;; QUESTION SECTION:
> ;1.0.0.172.in-addr.arpa.                IN      PTR
> 
> ;; AUTHORITY SECTION:
> 172.in-addr.arpa.       10800   IN      SOA     arrowroot.arin.net.
> bind.arin.net. 2003021719 1800 900 691200 10800
> 
> ;; Query time: 2037 msec
> ;; SERVER: 127.0.0.1#53(127.0.0.1)
> ;; WHEN: Mon Feb 17 20:29:51 2003
> ;; MSG SIZE  rcvd: 99
> 
> 
> NOTE: The 2037 milli sec.  I get simular query times (usually somewhat
> lower but unacceptible) for real queries.

	Well that was a real query.  If you want to measure the speed of
	the nameserver and rather than the speed of your forwarders then
	ask a question it can answer. 

	Try 127.0.0.1 not 172.0.0.1.

	Mark
 
> Here is my modified named.conf.  Once again, I've used the other
> config files from the how-to http://langfeldt.net/DNS-HOWTO/BIND-9/
> 
> Can anyone offer some suggestions, etc....
> kberrien at NO_SPAMattbi.com
> -------------------
> named.conf
> -------------------
> // Config file for caching only name server
> //
> // The version of the HOWTO you read may contain leading spaces
> // (spaces in front of the characters on these lines ) in this and
> // other files.  You must remove them for things to work.
> //
> // Note that the filenames and directory names may differ, the
> // ultimate contents of should be quite similar though.
> 
> options {
>         directory "/var/named";
> 
>         // Uncommenting this might help if you have to go through a
>         // firewall and things are not working out.  But you probably
>         // need to talk to your firewall admin.
> 
>         // query-source port 53;
> 
> 	forward first;
> 	forwarders {
> 		66.240.76.19;
> 		204.127.202.19;
> 	};
> 
> };
> 
> controls {
>         inet 127.0.0.1 allow { localhost; } keys { rndc_key; };
> };
> 
> key "rndc_key" {
>         algorithm hmac-md5;
>         secret
> "c3Ryb25nIGVub3VnaCBmb3IgYSBtYW4gYnV0IG1hZGUgZm9yIGEgd29tYW4K";
> };
> 
> zone "." {
>         type hint;
>         file "root.hints";
> };
> 
> zone "0.0.127.in-addr.arpa" {
>         type master;
>         file "pz/127.0.0";
> };
> 
--
Mark Andrews, Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark.Andrews at isc.org


More information about the bind-users mailing list