Re: OpenBSD 4.6 + carp + pf + pfsync lockup

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

From: Chris Cappuccio

Subject: Re: OpenBSD 4.6 + carp + pf + pfsync lockup

Date: Friday, September 10, 2010 - 2:02 pm

Martin Pelik??n [martin.pelikan@gmail.com] wrote:
quoted text> 2010/9/10, Andy Bradford
> <amb-sendok-1286721307.iadidoklmfcciicncjjl@bradfords.org>:
> > Why would you need  65k UDP for DNS? Almost all  UDP based DNS responses
> > are  under 512  bytes, those  that are  larger are  required to  set the
> > truncated bit and the client restart the query using TCP.
> 
> We have probably too many wild users because the logs were flooded by
> "named: not enough free resources" from connect() failing with
> ENOBUFS. DNS traffic is altq'd in high priority lowdelay queue. Any
> more clever solution?
> 

Stop using ALTQ on your DNS server, perhaps?  That may be what is causing the back-pressure that you're seeing.

Look at unbound, which is going to replace named anyways?

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

OpenBSD 4.6 + carp + pf + pfsync lockup, Joe Warren-Meeks, (Wed Sep 8, 2:34 am)

Re: OpenBSD 4.6 + carp + pf + pfsync lockup, Martin Pelikán, (Thu Sep 9, 12:43 am)

Re: OpenBSD 4.6 + carp + pf + pfsync lockup, Joe Warren-Meeks, (Thu Sep 9, 2:10 am)

Re: OpenBSD 4.6 + carp + pf + pfsync lockup, Martin Pelikán, (Thu Sep 9, 3:21 am)

Re: OpenBSD 4.6 + carp + pf + pfsync lockup, Nick Gustas, (Thu Sep 9, 5:55 am)

Re: OpenBSD 4.6 + carp + pf + pfsync lockup, Stuart Henderson, (Thu Sep 9, 3:43 pm)

Re: OpenBSD 4.6 + carp + pf + pfsync lockup, Martin Pelikán, (Fri Sep 10, 4:19 am)

Re: OpenBSD 4.6 + carp + pf + pfsync lockup, Andy Bradford, (Fri Sep 10, 7:35 am)

Re: OpenBSD 4.6 + carp + pf + pfsync lockup, Martin Pelikán, (Fri Sep 10, 7:39 am)

Re: OpenBSD 4.6 + carp + pf + pfsync lockup, Claudio Jeker, (Fri Sep 10, 12:36 pm)

Re: OpenBSD 4.6 + carp + pf + pfsync lockup, Chris Cappuccio, (Fri Sep 10, 2:02 pm)

Re: OpenBSD 4.6 + carp + pf + pfsync lockup, Martin Pelikán, (Fri Sep 10, 3:04 pm)

Re: OpenBSD 4.6 + carp + pf + pfsync lockup, Chris Cappuccio, (Fri Sep 10, 3:23 pm)

Re: OpenBSD 4.6 + carp + pf + pfsync lockup, Andy Bradford, (Fri Sep 10, 7:20 pm)

Re: OpenBSD 4.6 + carp + pf + pfsync lockup, Claudio Jeker, (Sat Sep 11, 2:28 am)

Re: OpenBSD 4.6 + carp + pf + pfsync lockup, Andy Bradford, (Sat Sep 11, 8:27 am)

Re: OpenBSD 4.6 + carp + pf + pfsync lockup, Henning Brauer, (Sun Sep 12, 6:34 am)