Re: DNS latency
Thanks gang! A couple of those tools were _exactly_ what I needed! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: DNS latency
You can try using dig +trace, never used it on a windows box but this might help you out: http://unroutable.blogspot.com/2009/02/how-to-install-dig-for-windows.html -matt From: Stephen Wimberly [mailto:riverside...@gmail.com] Sent: Saturday, January 29, 2011 3:57 PM To: NT System Admin Issues Subject: DNS latency I have an Active Directory domain, which means I have my own DNS environment. For any name resolution that is not in my domain, my DNS server must pass the request up to our ISP for resolution. Is there a way to measure how long the added delay might be to gain a reply? In other words how much faster would it be if I were pointing directly at the ISP DNS servers, not my own that forward? Thanks In Advance! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: DNS latency
Nsbench? http://www.dslreports.com/faq/15890 From: Matthew Bullock [mailto:mbull...@root9.com] Sent: Sunday, January 30, 2011 1:10 PM To: NT System Admin Issues Subject: RE: DNS latency You can try using dig +trace, never used it on a windows box but this might help you out: http://unroutable.blogspot.com/2009/02/how-to-install-dig-for-windows.html -matt From: Stephen Wimberly [mailto:riverside...@gmail.com] Sent: Saturday, January 29, 2011 3:57 PM To: NT System Admin Issues Subject: DNS latency I have an Active Directory domain, which means I have my own DNS environment. For any name resolution that is not in my domain, my DNS server must pass the request up to our ISP for resolution. Is there a way to measure how long the added delay might be to gain a reply? In other words how much faster would it be if I were pointing directly at the ISP DNS servers, not my own that forward? Thanks In Advance! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: DNS latency
it would maybe be a second or two. As soon as your internal DNS realizes it doesn't own the zone, it will send to it's first forwarder-Stephen Wimberly riverside...@gmail.com wrote: -To: "NT System Admin Issues" ntsysadmin@lyris.sunbelt-software.comFrom: Stephen Wimberly riverside...@gmail.comDate: 01/29/2011 06:57PMSubject: DNS latencyI have an Active Directory domain, which means I have my own DNS environment. For any name resolution that is not in my domain, my DNS server must pass the request up to our ISP for resolution. Is there a way to measure how long the added delay might be to gain a reply? In other words how much faster would it be if I were pointing directly at the ISP DNS servers, not my own that forward? Thanks In Advance!~ Finally, powerful endpoint security that ISN'T a resource hog! ~~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~---To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/or send an email to listmana...@lyris.sunbeltsoftware.comwith the body: unsubscribe ntsysadmin The information contained in this e-mail, and any attachment, is confidential and is intended solely for the use of the intended recipient. Access, copying or re-use of the e-mail or any attachment, or any information contained therein, by any other person is not authorized. If you are not the intended recipient please return the e-mail to the sender and delete it from your computer. Although we attempt to sweep e-mail and attachments for viruses, we do not guarantee that either are virus-free and accept no liability for any damage sustained as a result of viruses. Please refer to http://disclaimer.bnymellon.com/eu.htm for certain disclosures relating to European legal entities. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: DNS latency
Take a network trace on the AD DNS server and look at the timestamps between the receipt of the request from your client and the transmission of the reply. You'll be able to see each hop. You don't have much of a choice considering all your clients need AD's DNS info, though... Thanks, Brian Desmond br...@briandesmond.commailto:br...@briandesmond.com c - 312.731.3132 From: Stephen Wimberly [mailto:riverside...@gmail.com] Sent: Saturday, January 29, 2011 5:57 PM To: NT System Admin Issues Subject: DNS latency I have an Active Directory domain, which means I have my own DNS environment. For any name resolution that is not in my domain, my DNS server must pass the request up to our ISP for resolution. Is there a way to measure how long the added delay might be to gain a reply? In other words how much faster would it be if I were pointing directly at the ISP DNS servers, not my own that forward? Thanks In Advance! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: DNS latency
As Brian said, you need your clients to point to the AD DNS server anyway. Besides, your AD server will cache common external requests, so it's not going to be that much more latency (typically 2-5 seconds per hop [worst case], depending on your network layout and whether or not caching is involved). *ASB *(My Bio via About.Me http://about.me/Andrew.S.Baker/bio) *Exploiting Technology for Business Advantage...* * * On Sat, Jan 29, 2011 at 6:57 PM, Stephen Wimberly riverside...@gmail.comwrote: I have an Active Directory domain, which means I have my own DNS environment. For any name resolution that is not in my domain, my DNS server must pass the request up to our ISP for resolution. Is there a way to measure how long the added delay might be to gain a reply? In other words how much faster would it be if I were pointing directly at the ISP DNS servers, not my own that forward? Thanks In Advance! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin