From owner-freebsd-questions Mon Oct 21 19:18:14 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 550E637B401 for ; Mon, 21 Oct 2002 19:18:12 -0700 (PDT) Received: from mail.radzinschi.com (pcp01838331pcs.owngsm01.md.comcast.net [68.32.62.39]) by mx1.FreeBSD.org (Postfix) with ESMTP id 47E4443E77 for ; Mon, 21 Oct 2002 19:18:06 -0700 (PDT) (envelope-from marco@radzinschi.com) Received: from localhost (marco@localhost.radzinschi.com [127.0.0.1]) by mail.radzinschi.com (8.12.6/8.12.6) with ESMTP id g9M2Hwhj025447; Mon, 21 Oct 2002 22:17:58 -0400 (EDT) (envelope-from marco@radzinschi.com) Date: Mon, 21 Oct 2002 22:17:58 -0400 (EDT) From: Marco Radzinschi To: Ihsan Junaidi Ibrahim Cc: FreeBSD Questions Subject: Re: Resolving hostname takes too long In-Reply-To: <200210211334.40639.ihsan_junaidi@yahoo.com.sg> Message-ID: <20021021221311.R25423-100000@radzinschi.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG I am not certain why resolving external names from that machine go slow, but the reason ssh and ftp connections to that machine may be taking a while to establish is that it does a reverse dns lookup (address resolution) on the clients connecting to it. You can speed this up by allowing dynamic DNS updates on your internal DNS server and setting up your DHCP server to perform the updates as it hands out IP addresses. man dhcpd man named man named.conf man dhcpd.conf Marco Radzinschi E-Mail: marco@radzinschi.com AOL IM: CrackedBoy "Whoever fights monsters should see to it that in the process he does not become a monster. And when you look long into an abyss, the abyss also looks into you." -- Friedrich Nietzsche (Beyond Good and Evil) On Mon, 21 Oct 2002, Ihsan Junaidi Ibrahim wrote: > Hello all, > > I have quite a niggling problem with my box. It takes too long to resolve > hostname; ranges between 15 to 30 secs. My box serves as a gateway and ipfw > machine. Other machines on this network that connects to this machine don't > exhibit this particular problem, resolving hostname is pretty quick. > > I've tried many things; amongst them putting an open firewall just to see if > ipfw has anything to do with it; resolving still takes too much time. This > machine also serves as a private name server but I doubt that would get in > the way as I've disabled the private name server in resolv.conf; only > pointing to my ISP name servers. > > I have another problem which I think is related. Establishing SSH and FTP > sessions (the only traffics I tested) from another machine to this machine > slow down to a crawl. Only after the establishments did everything ie: > transferring files is running smooth. Before this everything is fast, > connecting to my private FTP is blazingly fast, I did't even have the time to > read the displayed log. Now when I'm doing it I can read and speak out loudly > every single word while they are displaying. Even connecting to my ISP FTP > server is quicker. Connecting is just too slow for convenience sake. Ditto > SSH. > > I implement DHCP in addition to the name server which use UDP traffic *which* > I think, after reading the pertinent man pages, *may* have something to do > with UDP timeout or something like that. To change this default attribute, > I'd have to edit a kernel variable through sysctl. How do I know the right > variable? > > I'm really at a loss over this. This box serve as my main desktop machine, no > longer using Windows and hope to become a convert. > __________________________________________________ > Do You Yahoo!? > Sign up for SBC Yahoo! Dial - First Month Free > http://sbc.yahoo.com > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message