1 |
On Sun, May 20, 2012 at 8:43 PM, Nilesh Govindrajan |
2 |
<contact@××××××××.com> wrote: |
3 |
> On Mon, May 21, 2012 at 1:17 AM, Alan McKinnon <alan.mckinnon@×××××.com> wrote: |
4 |
>>> Slow connection. See my previous reply to the list. I'm using pdnsd, |
5 |
>>> which can persist records and has every damn feature I wanted. |
6 |
>>> |
7 |
>> |
8 |
>> Fair enough, but consider this: |
9 |
>> |
10 |
>> If your connection is slow, the only thing you speeded up is the DNS |
11 |
>> lookups. Thereafter, everything else is still as slow as it ever was. |
12 |
>> And if you feel the need to speed up DNS lookups then the odds are very |
13 |
>> good that "everything else" is too slow i.e. not exactly usable. |
14 |
>> |
15 |
>> We get this a lot from our customers too, and the advise we give them |
16 |
>> is to look closely at their traffic throttling. In almost every case |
17 |
>> all UDP traffic has had the living crap throttled out of it somewhere |
18 |
>> by folk that don't really think things through, severely affecting |
19 |
>> dns and ntp as well as AV streaming. |
20 |
>> |
21 |
>> Throttled DNS rapidly gets out of hand, IIRC the last time we did some |
22 |
>> measurements it only takes around 5% of dns lookups to go wonky for the |
23 |
>> situation to rapidly spiral out of control - when dns fails the cache |
24 |
>> will try a TCP lookup and that's like wading through molasses. |
25 |
>> |
26 |
>> Our advice to customers is to first unthrottle dns and ntp completely, |
27 |
>> give it the highest possible priority (these are extremely light |
28 |
>> protocols and seldom show up on the radar when you do this), and see |
29 |
>> how that goes. |
30 |
>> |
31 |
>> It just seems to me that you *might* be trying a very unusual solution |
32 |
>> for a problem that is better handled one layer lower down. |
33 |
>> |
34 |
> |
35 |
> Strictly speaking, my connection isn't too slow. I have a transfer |
36 |
> rate of 64 K/s (might sound ridiculous to you, but this costs 18$/mo |
37 |
> here). |
38 |
> OpenDNS lookups from my connection take something like 300 msec+ and |
39 |
> Google DNS lookups around 50 msec. |
40 |
> |
41 |
> I can obviously use Google DNS, but as I said earlier, OpenDNS gives |
42 |
> me phishing protection and other that sort of stuff. |
43 |
> |
44 |
> And hence I must use a local cache. |
45 |
|
46 |
Side note: Honestly, you should be using a local cache, regardless. |
47 |
It'll improve performance for you, *especially* when there's any risk |
48 |
of packet drops between you and the your ISP's core equipment. When I |
49 |
was on a 6Mb/s-down ADSL connection, the improvement I experienced |
50 |
simply from running bind9 as a recursive resolver was *massive*. I |
51 |
still do so, even though I'm now on a pretty reliable cable |
52 |
connection. |
53 |
|
54 |
|
55 |
-- |
56 |
:wq |