On Sun, Jan 05, 2003 at 12:55:48PM +0000, lemon wrote: > hi, > > i have a 4.7-STABLE box running two nameservers: a djbdns dnscache on > 127.0.0.1 to serve local requests, and have recently added a djbdns > tinydns on my external address to serve domains i host, viz: > > $ sockstat -4 | grep :53 > dnscache dnscache 37679 3 udp4 127.0.0.1:53 *:* > dnscache dnscache 37679 4 tcp4 127.0.0.1:53 *:* > tinydns tinydns 37672 3 udp4 192.168.1.2:53 *:* > > the box's resolv.conf has a single nameserver entry for localhost. > > my problem: since adding the external tinydns listener, my openssh > sessions take ages to log in. thinking a reverse lookup oddity i did > some digging, and saw that the getnameinfo call in sshd appears to query > the external listener (albeit thru loopback) first. this external > listener can't reverse the connection's address since it only resolves > domains hosted on the box itself. after a long timeout, the correct > nameserver is contacted and the login succeeds. some tcpdumping reveals:
My previous attempts at analyzing this aside, could this be related to the problem described in PR bin/40984 and ports/39953? http://www.FreeBSD.org/cgi/query-pr.cgi?pr=40894 http://www.FreeBSD.org/cgi/query-pr.cgi?pr=39953 G'luck, Peter -- Peter Pentchev [EMAIL PROTECTED] [EMAIL PROTECTED] PGP key: http://people.FreeBSD.org/~roam/roam.key.asc Key fingerprint FDBA FD79 C26F 3C51 C95E DF9E ED18 B68D 1619 4553 This sentence would be seven words long if it were six words shorter.
msg39360/pgp00000.pgp
Description: PGP signature
