Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 14 Nov 2001 11:05:00 +0100
From:      Brad Knowles <brad.knowles@skynet.be>
To:        "Julian Morgan" <jmorgan@mitchells.com.au>, questions@FreeBSD.ORG, chat@FreeBSD.ORG
Subject:   Re: Named and NatD running mad in TOP
Message-ID:  <a0510030ab817f180234e@[194.78.144.27]>
In-Reply-To: <4A256B04.0034A9DA.00@mail.mitchells.com.au>
References:  <4A256B04.0034A9DA.00@mail.mitchells.com.au>

next in thread | previous in thread | raw e-mail | index | archive | help
At 7:35 PM +1000 11/14/01, Julian Morgan wrote:

>  Although I did mailq and there was nothing in there I would say ppl in the
>  office would have trouble getting resources from the server.. After a reboot,
>  both Named and Nat were going sky high...

	Turn on query logging, so that you can see where your DNS 
queries are coming from.  Many people have found that they're running 
open caching/recursive servers and are getting the hell abused out of 
their machines by an amazing variety of people on the 'net.

	If you don't turn on query logging, at least configure your 
machine so that it does not answer queries from non-local IP 
addresses (whatever you have on your local network behind the NAT).


	If you're still getting high usage rates after turning off 
public caching/recursive service, then check to see if you've got a 
program that is going through and parsing web log data (webalizer or 
whatever), because that process will seriously chew up DNS server 
resources while its running.

-- 
Brad Knowles, <brad.knowles@skynet.be>

H4sICIFgXzsCA2RtYS1zaWcAPVHLbsMwDDvXX0H0kkvbfxiwVw8FCmzAzqqj1F4dy7CdBfn7
Kc6wmyGRFEnvvxiWQoCvqI7RSWTcfGXQNqCUAnfIU+AT8OZ/GCNjRVlH0bKpguJkxiITZqes
MxwpSucyDJzXxQEUe/ihgXqJXUXwD9ajB6NHonLmNrUSK9nacHQnH097szO74xFXqtlbT3il
wMsBz5cnfCR5cEmci0Rj9u/jqBbPeES1I4PeFBXPUIT1XDSOuutFXylzrQvGyboWstCoQZyP
dxX4dLx0eauFe1x9puhoi0Ao1omEJo+BZ6XLVNaVpWiKekxN0VK2VMpmAy+Bk7ZV4SO+p1L/
uErNRS/qH2iFU+iNOtbcmVt9N16lfF7tLv9FXNj8AiyNcOi1AQAA

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-chat" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?a0510030ab817f180234e>