maybe a dumb idea on how to fix the dns problems i don't know....
Victor Jerlin
victor at gsys.se
Mon Aug 11 00:26:04 UTC 2008
Inline..
Chris Paul wrote:
>
>
> Joe Greco wrote:
>>> But we only care about TCP connection setup time in *interactive*
>>> sessions (a human using something like the web). If you have a
>>> persistent connection to your dns server from your dns resolver on
>>> your browser machine, you just send the request.... no TCP setup
>>> there at all. You can even pool connections. We do this stuff in LDAP
>>> all the time.
>>>
>>> How does TCP resolution work in most resolver libraries? A TCP
>>> connection for each lookup? That is kind of dumb isn't it, speaking
>>> of dumb.... I actually don't know. Not much of a coder, so I'll let
>>> you coders check your code and get back to me on that...
>>>
>>> well.. maybe i'll fire up snort or wireshark and check it out later
>>> with some different dns libs....
>>>
>>
>> Pretending for a moment that it was even possible to make such large
>> scale changes and get them pushed into a large enough number of
>> clients to matter, you're talking about meltdown at the recurser
>> level, because
>> it isn't just one connection per _computer_, but one connection per
>> _resolver stub_ per _computer_ (which, on a UNIX machine, would tend to
>> gravitate towards one connection per process), and this just turns
>> into an insane number of sockets you have to manage.
>>
> Couldn't the resolver libraries be changed to not use multiple connections?
And we'll change to IPv6 tomorrow!
>
> CP
>
--
Victor Jerlin, CTO
Gränslösa System GSYS HB
Cell#: +356-9999-0125
More information about the NANOG
mailing list