From owner-freebsd-questions@FreeBSD.ORG Wed May 16 02:45:32 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 7926416A400 for ; Wed, 16 May 2007 02:45:32 +0000 (UTC) (envelope-from jackbarnett@gmail.com) Received: from py-out-1112.google.com (py-out-1112.google.com [64.233.166.177]) by mx1.freebsd.org (Postfix) with ESMTP id 3BBDC13C455 for ; Wed, 16 May 2007 02:45:32 +0000 (UTC) (envelope-from jackbarnett@gmail.com) Received: by py-out-1112.google.com with SMTP id f31so354597pyh for ; Tue, 15 May 2007 19:45:31 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=UV2i5mZ1AOUtGI2u0kDVlt3JLBl9MFlK2kas7C2rYWFEUtqM39sTzJ+zdX9JOrss5KMIFVxve0oE1kp1k1XdFnRRq9YsF2/KQaNYkrKhL80r+dI+yIvxksHVuR0Maa0xkVQAgFgPCIrwkIm2vt0iYZZFiBuRd4prSoIDqw+qp/Q= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=WA1vRMhfe8xNEiSJ0YGlPYzD5INfNak4b/UtWtMrZ2UOQUiFsxXG6Q15PrmMLeMI7RzjZvSQN9l5WgGejqi6CGh8F+fDvPTjxOG6xkvmZfv2bpN4d19QmMyU7o2vVzGhiXsPa9TJv6jLAStBuGd3AwjU9nFiZ8zy2R6jF25ZQh8= Received: by 10.35.106.15 with SMTP id i15mr14154007pym.1179283530761; Tue, 15 May 2007 19:45:30 -0700 (PDT) Received: by 10.35.13.12 with HTTP; Tue, 15 May 2007 19:45:30 -0700 (PDT) Message-ID: Date: Tue, 15 May 2007 21:45:30 -0500 From: "Jack Barnett" To: freeBSD MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline Subject: DNS Cache - Bind X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 May 2007 02:45:32 -0000 I'm running Bind 9.3.4 on FreeBSD 6.2 for my local network. It doesn't have any zones, it's just a local DNS that has a bunch of forwarders. The first request is slow (between 150 and 300 ms) - but after that (the next query on same domain) is fast (less then 10 ms usually). This is nice and working the way I like it. :) What I'm wondering though is: a) How do I flush the cache if I need to (ie. need to get a new update from the forwards) - just restart named? b) Are there any settings I can tweak that determine how long the cache is kept? (ie. Say I want to keep all queries for 7 days before they are queried from the upstream DNS servers). [This will probably screw up dynamic DNS sites, but want to see what settings are available] c) Is there a easy way to 'blacklist' sites? Say I want 'SpammerNetwork.com' to resolve to 127.0.0.1. Basically I want to take this host file: http://www.mvps.org/winhelp2002/hosts.htm and then pump it into my DNS server, that way all the LAN clients are "protected" from these sites. Is there a way to do that? -J