Date: Wed, 22 Jan 2003 16:16:15 +0200 From: Peter Pentchev <roam@ringlet.net> To: lemon <lemon@aldigital.co.uk> Cc: freebsd-hackers@freebsd.org Subject: Re: getnameinfo contacting 'wrong' resolver for lookup Message-ID: <20030122141615.GF379@straylight.oblivion.bg> In-Reply-To: <3E182B54.4090007@aldigital.co.uk> References: <3E182B54.4090007@aldigital.co.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
--x4pBfXISqBoDm8sr Content-Type: text/plain; charset=windows-1251 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sun, Jan 05, 2003 at 12:55:48PM +0000, lemon wrote: > hi, >=20 > i have a 4.7-STABLE box running two nameservers: a djbdns dnscache on > 127.0.0.1 to serve local requests, and have recently added a djbdns > tinydns on my external address to serve domains i host, viz: >=20 > $ sockstat -4 | grep :53 > dnscache dnscache 37679 3 udp4 127.0.0.1:53 *:* > dnscache dnscache 37679 4 tcp4 127.0.0.1:53 *:* > tinydns tinydns 37672 3 udp4 192.168.1.2:53 *:* >=20 > the box's resolv.conf has a single nameserver entry for localhost. >=20 > my problem: since adding the external tinydns listener, my openssh > sessions take ages to log in. thinking a reverse lookup oddity i did > some digging, and saw that the getnameinfo call in sshd appears to query > the external listener (albeit thru loopback) first. this external > listener can't reverse the connection's address since it only resolves > domains hosted on the box itself. after a long timeout, the correct > nameserver is contacted and the login succeeds. some tcpdumping reveals: My previous attempts at analyzing this aside, could this be related to the problem described in PR bin/40984 and ports/39953? http://www.FreeBSD.org/cgi/query-pr.cgi?pr=3D40894 http://www.FreeBSD.org/cgi/query-pr.cgi?pr=3D39953 G'luck, Peter --=20 Peter Pentchev roam@ringlet.net roam@FreeBSD.org PGP key: http://people.FreeBSD.org/~roam/roam.key.asc Key fingerprint FDBA FD79 C26F 3C51 C95E DF9E ED18 B68D 1619 4553 This sentence would be seven words long if it were six words shorter. --x4pBfXISqBoDm8sr Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE+Lqev7Ri2jRYZRVMRAlaOAJ9M/oOntQEFH+IKMLOYm6Ct6QKSSgCgv9Md JPM6kJ/FCIbphfGnAY2Vx2M= =g49u -----END PGP SIGNATURE----- --x4pBfXISqBoDm8sr-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030122141615.GF379>