Re: EDNS request problem on TTL=0 data
On 27/06/11 16:39, Paul Wouters wrote: On Mon, 27 Jun 2011, Florian Weimer wrote: 1 Is this problem happening because EDNS failure is not remembered for forwarders? There is no realiable way to detect EDNS support in forwarders, so there isn't anything to remember, really. Sadly, the situation with authoritative servers is not much better. That is not entirely true, because bind does log a message that it is disabling EDNS, and then gets the query out. So it could remember that state for a little while? But currently, it appaers to not do that, so a forwarder with broken EDNS creates havoc on a busy server in combination with serving TTL=0 records. BIND does take notice of this and it's something we're looking at to make better in future releases. But at the moment it's not foolproof and its effectiveness is dependent on circumstances. There is short term caching of learned 'we don't support EDNS' servers. But reaching the point of being able to process and cache them is dependent on how many servers we're dealing with for a zone that we're querying and also how far down the 'trail' of handling a client query we happen to be. If the client query times out before BIND has finished trying and timing out, then it doesn't get to cache what it was in the process of learning. There's also currently no caching of intermediate status - such as supporting EDNS0 but only at size 512. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: EDNS request problem on TTL=0 data
On Tue, 28 Jun 2011, Cathy Almond wrote: BIND does take notice of this and it's something we're looking at to make better in future releases. But at the moment it's not foolproof and its effectiveness is dependent on circumstances. There is short term caching of learned 'we don't support EDNS' servers. But reaching the point of being able to process and cache them is dependent on how many servers we're dealing with for a zone that we're querying and also how far down the 'trail' of handling a client query we happen to be. If the client query times out before BIND has finished trying and timing out, then it doesn't get to cache what it was in the process of learning. This problem was the reverse. Thousands of clients were asking it, and the backlog only increased over time because 3 out of 4 seconds the forwarder was unavailable due to DO packets getting dropped. Paul ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
better performance with 32 bit ! why?
Hi all, I'm testing the same version of bind 9.4-ESV-R4-P1 on two server, one is a 32 bit (on which i have a redhat 32 bit) and the second a 64 bit server on which i have a redhat 64 bit. on the 32 bit i reach 7 qps but on the 64 bit i only reach 5 qps (using resperf) and also with tcpreplay. Is it normal that bind when compiled and installed on a 32 bit server have better performance than bind when compiled and installed on a 64 bit server. the only différence between the two server is 64 bit vs 32 bit ( same RAM, same Disk, same NIC,...) and CPU is better on the 64 bit (2 Intel E5310 quad-core 1.6Ghz) than the 32 bit(2 Intel Xeon duad-core 2.33Ghz). Thanks. IMPORTANT.Les informations contenues dans ce message electronique y compris les fichiers attaches sont strictement confidentielles et peuvent etre protegees par la loi. Ce message electronique est destine exclusivement au(x) destinataire(s) mentionne(s) ci-dessus. Si vous avez recu ce message par erreur ou s il ne vous est pas destine, veuillez immediatement le signaler a l expediteur et effacer ce message et tous les fichiers eventuellement attaches. Toute lecture, exploitation ou transmission des informations contenues dans ce message est interdite. Tout message electronique est susceptible d alteration. A ce titre, le Groupe France Telecom decline toute responsabilite notamment s il a ete altere, deforme ou falsifie. De meme, il appartient au destinataire de s assurer de l absence de tout virus. IMPORTANT.This e-mail message and any attachments are strictly confidential and may be protected by law. This message is intended only for the named recipient(s) above. If you have received this message in error, or are not the named recipient(s), please immediately notify the sender and delete this e-mail message. Any unauthorized view, usage or disclosure ofthis message is prohibited. Since e-mail messages may not be reliable, France Telecom Group shall not be liable for any message if modified, changed or falsified. Additionally the recipient should ensure they are actually virus free. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: better performance with 32 bit ! why?
On 6/28/2011 11:15 AM, iharrathi@orange-ftgroup.com wrote: Hi all, I'm testing the same version of bind 9.4-ESV-R4-P1 on two server, one is a 32 bit (on which i have a redhat 32 bit) and the second a 64 bit server on which i have a redhat 64 bit. on the 32 bit i reach 7 qps but on the 64 bit i only reach 5 qps (using resperf) and also with tcpreplay. Is it normal that bind when compiled and installed on a 32 bit server have better performance than bind when compiled and installed on a 64 bit server. the only différence between the two server is 64 bit vs 32 bit ( same RAM, same Disk, same NIC,...) and CPU is better on the 64 bit (2 Intel E5310 quad-core 1.6Ghz) than the 32 bit(2 Intel Xeon duad-core 2.33Ghz). Thanks. The 32 bit rig is faster (2.33Ghz). -- Dave ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: better performance with 32 bit ! why?
iharrathi@orange-ftgroup.com wrote: Is it normal that bind when compiled and installed on a 32 bit server have better performance than bind when compiled and installed on a 64 bit server. the only différence between the two server is 64 bit vs 32 bit ( same RAM, same Disk, same NIC,...) and CPU is better on the 64 bit (2 Intel E5310 quad-core 1.6Ghz) than the 32 bit(2 Intel Xeon duad-core 2.33Ghz). I'll admit I haven't really done any proper benchmarking of BIND on 32 vs 64 bit systems. I have done some benchmarking before though. You're doing the exact same queries, asking for local / locally cached data? Just so I know that you're _really_ comparing apples to apples. The systems are configured exactly the same, also with regars to which other services might be running there, SELinux settings, iptables etc? In my experience: yes BIND9 is multithreaded, but there seems to be very little (if any) gain from letting it use more than 4 CPU cores / threads, meaning the 32 bit 2.33GHz CPU might actually win out purely based on the higher clock frequency. Also, you mentioned you were seeing a similar picture when using tcpreplay - as far as I know tcpreplay is single-threaded - which also suggests the reason it might win out on the 32 bit system is again due to the clock frequency. Regards Eivind Olsen ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Named.conf logical blocks
Hi Guys, Does anyone have a sample grammar for pharsing named.conf into a data structure? Perl or PHP are preffered, but anything would be fine just to get a clear picture about grammar and logical blocks. Thanks! -- Stefan Certic RoutoMessaging 48 Charlotte Street London, W1T 2NS United Kingdom http://www.routomessaging.com GSMA Associate Member Switchboard +44 (0) 870 231 Fax + 44 (0) 870 231 7775 Email : ste...@routotelecom.com MSN ID : ste...@routotelecom.com DISCLAIMER This email contains information provided by Routo Telecommunications Ltd, which may be privileged or confidential. It is meant only for the individual(s) or entity named above. If you are not the intended recipient, note that disclosing, copying, distributing or using this information is prohibited. If you have received this email in error, please let me know immediately on the email address above. Routo Telecommunications Ltd may not be held responsible for the content of this email as it may reflect the personal view of the sender and not that of the company. Internet communications cannot be guaranteed to be timely, secure, error or virus-free. The sender does not accept liability for any errors or omissions. We monitor our email system and may record your emails. Routo Telecommunications Ltd Registration Number 04546322 has its principal place of business at 48 Charlotte Street, London, W1T 2NS, United Kingdom. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: better performance with 32 bit ! why?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 06/28/2011 12:30 PM, David Sparro wrote: On 6/28/2011 11:15 AM, iharrathi@orange-ftgroup.com wrote: Hi all, I'm testing the same version of bind 9.4-ESV-R4-P1 on two server, one is a 32 bit (on which i have a redhat 32 bit) and the second a 64 bit server on which i have a redhat 64 bit. on the 32 bit i reach 7 qps but on the 64 bit i only reach 5 qps (using resperf) and also with tcpreplay. Is it normal that bind when compiled and installed on a 32 bit server have better performance than bind when compiled and installed on a 64 bit server. the only différence between the two server is 64 bit vs 32 bit ( same RAM, same Disk, same NIC,...) and CPU is better on the 64 bit (2 Intel E5310 quad-core 1.6Ghz) than the 32 bit(2 Intel Xeon duad-core 2.33Ghz). Thanks. The 32 bit rig is faster (2.33Ghz). My understanding is that 64-bit is NOT faster in most cases, and only makes some things possible (addressing large amounts of memory is one stand-out) that are not possible with 32-bit. If bind is not going to be using over 4GB of RAM by itself, my understanding is that running 64-bit will merely add overhead. I realize that is a pretty big generalization, so feel free to correct me if you know better. - -- - _ _ _ _ ___ _ _ _ |Y#| | | |\/| | \ |\ | | |Ryan Novosielski - Sr. Systems Programmer |$| |__| | | |__/ | \| _| |novos...@umdnj.edu - 973/972.0922 (2-0922) \__/ Univ. of Med. and Dent.|IST/CST-Academic Svcs. - ADMC 450, Newark -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk4KEBQACgkQmb+gadEcsb4Z5gCeJDYbXxyg3LXkHvm/Th60Ln0R JLIAoJ+XrmrlJ5bLL+HPBKc/a2uzQMsl =ZuMX -END PGP SIGNATURE- attachment: novosirj.vcf___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Named.conf logical blocks
On 06/28/2011 05:53 PM, Stefan Certic wrote: Hi Guys, Does anyone have a sample grammar for pharsing named.conf into a data structure? Perl or PHP are preffered, but anything would be fine just to get a clear picture about grammar and logical blocks. The only think I ever wrote was a quick python hack that used a big regexp and an eat block function. Maybe it'll be of some interest, but beware - regexp engines are not parsers, as jwz once famously pointed out: You have a problem, and you decide to solve it with regexps. Now you have two problems. ;o) Anyway, break the regexp up and it's fairly obvious what it's doing. You can get better results with a proper state-machine based parser. #!/usr/bin/python import re import sys import pprint token_re = re.compile(r'/\*.*\*/|//[^\n]*\n|#[^\n]*\n|;|{|}|\d+\.\d+\.\d+\.\d+|[-a-zA-Z0-9]+|[^]+') def eat(toklist): all = [] v = [] while toklist: t = toklist.pop(0) if t=='{': inner = eat(toklist) v.append(inner) elif t=='}' and toklist and toklist[0]==';': break elif t==';': all.append(v) v = [] else: v.append(t) return all data = sys.stdin.read() tokens = token_re.findall(data) pprint.pprint( eat(tokens) ) ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Named.conf logical blocks
On 06/28/2011 05:53 PM, Stefan Certic wrote: Hi Guys, Does anyone have a sample grammar for pharsing named.conf into a data structure? Perl or PHP are preffered, but anything would be fine just to get a clear picture about grammar and logical blocks. I send mine through named-checkconf to put it in a consistent state. This helps to reduce the includes and sort out the views and blocks logically. See man named-checkconf. /usr/local/sbin/named-checkconf -p /var/named/named.conf.canonical ||\ echo -e \nConversion failed, as will named if attempted \ /var/named/named.conf.canonical -- David Forrest Maple Park Development Corporation St. Louis, Missouri ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Named.conf logical blocks
I am more looking for a solution to read data with perl and convert to some native data structure, like hash reference, or multidimenzional array, so i can access and change data in form of: $named_conf_file-{view1}-{zoneblah} = 'somedata' and then dump it back into original format. Regards, On Tuesday, June 28, 2011 09:46:29 pm David Forrest wrote: On 06/28/2011 05:53 PM, Stefan Certic wrote: Hi Guys, Does anyone have a sample grammar for pharsing named.conf into a data structure? Perl or PHP are preffered, but anything would be fine just to get a clear picture about grammar and logical blocks. I send mine through named-checkconf to put it in a consistent state. This helps to reduce the includes and sort out the views and blocks logically. See man named-checkconf. /usr/local/sbin/named-checkconf -p /var/named/named.conf.canonical ||\ echo -e \nConversion failed, as will named if attempted \ /var/named/named.conf.canonical -- Stefan Certic RoutoMessaging 48 Charlotte Street London, W1T 2NS United Kingdom http://www.routomessaging.com GSMA Associate Member Switchboard +44 (0) 870 231 Fax + 44 (0) 870 231 7775 Email : ste...@routotelecom.com MSN ID : ste...@routotelecom.com DISCLAIMER This email contains information provided by Routo Telecommunications Ltd, which may be privileged or confidential. It is meant only for the individual(s) or entity named above. If you are not the intended recipient, note that disclosing, copying, distributing or using this information is prohibited. If you have received this email in error, please let me know immediately on the email address above. Routo Telecommunications Ltd may not be held responsible for the content of this email as it may reflect the personal view of the sender and not that of the company. Internet communications cannot be guaranteed to be timely, secure, error or virus-free. The sender does not accept liability for any errors or omissions. We monitor our email system and may record your emails. Routo Telecommunications Ltd Registration Number 04546322 has its principal place of business at 48 Charlotte Street, London, W1T 2NS, United Kingdom. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
RE: Named.conf logical blocks
there is a perl module out there that may help: http://cpan.uwinnipeg.ca/htdocs/BIND-Config-Parser/BIND/Config/Parser.html I don't know - I'm not much of a perl monkey (or any of one, really), but I may work for what you'd like. t. -Original Message- From: bind-users-bounces+tsnyder=rim@lists.isc.org [mailto:bind-users-bounces+tsnyder=rim@lists.isc.org] On Behalf Of Stefan Certic Sent: Tuesday, June 28, 2011 4:55 PM To: bind-users@lists.isc.org; d...@maplepark.com Subject: Re: Named.conf logical blocks I am more looking for a solution to read data with perl and convert to some native data structure, like hash reference, or multidimenzional array, so i can access and change data in form of: $named_conf_file-{view1}-{zoneblah} = 'somedata' and then dump it back into original format. Regards, On Tuesday, June 28, 2011 09:46:29 pm David Forrest wrote: On 06/28/2011 05:53 PM, Stefan Certic wrote: Hi Guys, Does anyone have a sample grammar for pharsing named.conf into a data structure? Perl or PHP are preffered, but anything would be fine just to get a clear picture about grammar and logical blocks. I send mine through named-checkconf to put it in a consistent state. This helps to reduce the includes and sort out the views and blocks logically. See man named-checkconf. /usr/local/sbin/named-checkconf -p /var/named/named.conf.canonical ||\ echo -e \nConversion failed, as will named if attempted \ /var/named/named.conf.canonical -- Stefan Certic RoutoMessaging 48 Charlotte Street London, W1T 2NS United Kingdom http://www.routomessaging.com GSMA Associate Member Switchboard +44 (0) 870 231 Fax + 44 (0) 870 231 7775 Email : ste...@routotelecom.com MSN ID : ste...@routotelecom.com DISCLAIMER This email contains information provided by Routo Telecommunications Ltd, which may be privileged or confidential. It is meant only for the individual(s) or entity named above. If you are not the intended recipient, note that disclosing, copying, distributing or using this information is prohibited. If you have received this email in error, please let me know immediately on the email address above. Routo Telecommunications Ltd may not be held responsible for the content of this email as it may reflect the personal view of the sender and not that of the company. Internet communications cannot be guaranteed to be timely, secure, error or virus-free. The sender does not accept liability for any errors or omissions. We monitor our email system and may record your emails. Routo Telecommunications Ltd Registration Number 04546322 has its principal place of business at 48 Charlotte Street, London, W1T 2NS, United Kingdom. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users - This transmission (including any attachments) may contain confidential information, privileged material (including material protected by the solicitor-client or other applicable privileges), or constitute non-public information. Any use of this information by anyone other than the intended recipient is prohibited. If you have received this transmission in error, please immediately reply to the sender and delete this information from your system. Use, dissemination, distribution, or reproduction of this transmission by unintended recipients is not authorized and may be unlawful. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: better performance with 32 bit ! why?
On Tue, Jun 28, 2011 at 7:32 AM, Ryan Novosielski novos...@umdnj.edu wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 06/28/2011 12:30 PM, David Sparro wrote: On 6/28/2011 11:15 AM, iharrathi@orange-ftgroup.com wrote: Hi all, I'm testing the same version of bind 9.4-ESV-R4-P1 on two server, one is a 32 bit (on which i have a redhat 32 bit) and the second a 64 bit server on which i have a redhat 64 bit. on the 32 bit i reach 7 qps but on the 64 bit i only reach 5 qps (using resperf) and also with tcpreplay. Is it normal that bind when compiled and installed on a 32 bit server have better performance than bind when compiled and installed on a 64 bit server. the only différence between the two server is 64 bit vs 32 bit ( same RAM, same Disk, same NIC,...) and CPU is better on the 64 bit (2 Intel E5310 quad-core 1.6Ghz) than the 32 bit(2 Intel Xeon duad-core 2.33Ghz). Thanks. The 32 bit rig is faster (2.33Ghz). My understanding is that 64-bit is NOT faster in most cases, and only makes some things possible (addressing large amounts of memory is one stand-out) that are not possible with 32-bit. If bind is not going to be using over 4GB of RAM by itself, my understanding is that running 64-bit will merely add overhead. I realize that is a pretty big generalization, so feel free to correct me if you know better. I'll take it a step farther. In my experience running code in 64-bit mode is USUALLY slightly slower than running it in 32-bit mode on the same hardware. This is mostly because of the added data that must be moved for 64-bit operations. It also means the 64-bit binaries are larger, often by a significant amount. I recommend sticking with 32-bit systems unless you have a specific need for 64-bit capacity. -- R. Kevin Oberman, Network Engineer - Retired E-mail: kob6...@gmail.com ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Named.conf logical blocks
In message 201106281853.55303.ste...@routotelecom.com, Stefan Certic writes: Hi Guys, Does anyone have a sample grammar for pharsing named.conf into a data structure? Perl or PHP are preffered, but anything would be fine just to get a clear picture about grammar and logical blocks. Thanks! You could just call named's parser. It's in lib/isccfg. Mark -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users