[nsd-users] NSD4 goes unresponsive with lots of TCP connection!
Kabindra Shrestha
kabindra at geeks.net.np
Fri Apr 8 06:10:49 UTC 2016
Hi,
> On Apr 6, 2016, at 5:41 PM, Daisuke HIGASHI <daisuke.higashi at gmail.com> wrote:
>
> Hi,
>
> I have seen opposite (same?) situation with BIND9 nameserver -- many
> UDP queries and
> almost unresponsible both for UDP and TCP query.
> That was not due to BIND9's issue, but firewall (iptables) state table was full.
Yes, we have seen that problem as well. The state table keep tracks of UDP connections as well, so we bypass state table for port 53 both UDP and TCP on all our production servers.
Thanks.
Regards,
Kabindra Shrestha
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 495 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.nlnetlabs.nl/pipermail/nsd-users/attachments/20160408/b218ac3a/attachment.bin>
More information about the nsd-users
mailing list