Date: Sun, 17 May 1998 17:30:30 -0400 From: "Mark Segal" <mark.segal@utoronto.ca> To: <freebsd-questions@FreeBSD.ORG>, "MP" <mlistbsd@icorp.net> Subject: Re: too many open files problem Message-ID: <01bd81db$041a5f20$0201010a@elmo>
next in thread | raw e-mail | index | archive | help
This is a simple fix... by default bind 8.1.x trys to open listen on every
ip bound to the machine.. it it will answer a dns query on every ip. This
is useless.. because you only need to listen on the localhost, and the ip
that is registered with the InterNIC, so the simple fix is, use the
listen-on directive in your options section of the named.conf.
-- named.conf --
options {
directory "/etc/namedb";
listen-on {127.0.0.1; 204.107.221.20;};
// other options here
};
-----
I assummed this was four your domain.thingy.icorp.net ... :). If not just
switch the second IP, with the proper one.. :)
Mark Segal
formally of Club-Web, now happly employed at Pathway Communications (still
have to make my mail account, or more imprtantly, get a desktop) :).
>
>Greetings,
>
>I'm running into a problem with FreeBSD 2.2.6.
>
>I have two Class C's on my network and recently a hacker tunnelled into the
>backbone and masqueraded under an unused IP in my subnet to do spamming.
>As a result, I opted to bind all my IP addresses - used or not, to one of
>my servers. So I have about 400 or so IPs bound. When I boot FBSD 2.2.6,
>everything works, but if I -HUP the nameserver, I get this in the messages
>log:
>
>May 17 14:29:37 mysys named[1266]: starting. named 4.9.6-REL Wed Mar 25
>00:29:
>44 GMT 1998 jkh@time.cdrom.com:/usr/obj/usr/src/usr.sbin/named
>May 17 14:29:37 mysys named[1266]: fcntl(dfd, F_DUPFD, 20): Too many open
>files
>May 17 14:29:37 mysys last message repeated 15 times
>
>The hard limit on open files is set at 360 - this may be inadequate since I
>may have up to 512 domains mapped to my server. I assume there is a
>relationship between these two concepts.
>
>In scanning the archives on FreeBSD.org, none of the solutions worked for
>me (regarding setting ulimit ...) - and I didn't try anything regarding
>compiling the kernel - I'm using the generic compilation right now.
>
>What are my options? Do I need to tune the kernel to solve this problem?
>
>If so, would someone be so kind as to walk me through this process?
>Initial examinations showed a value OPEN_MAX, but it simply referenced some
>header file that I could not find on the system - I haven't done enough
>research yet to figure out what to do.
>
>Any help would be GREATLY appreciated - please direct e-mail to:
mp@icorp.net
>
>Thanks very much!!
>
>
>To Unsubscribe: send mail to majordomo@FreeBSD.org
>with "unsubscribe freebsd-isp" in the body of the message
>
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?01bd81db$041a5f20$0201010a>