Hi!
We found dnsdist very useful and interesting and using it in a couple of
configurations.
Now we are testing dnsdist to find the best tuning for our setup,
and we find the performance is not what we expected (based on what we saw
in presentations)
We can't get more than 120/150 kqps
We don't th
Hi, thanks for you fast reply,
but i think that setMaxUDPOutstanding relates to queries pending from
backend servers to dnsdist.
My tests are almost all serviced from cache.
On Mon, Apr 3, 2017 at 4:42 PM, Aleš Rygl wrote:
>
> > We can't get more than 120/150 kqps
> > We don't think it's netwo
on our config.
Now we just tried to run 3 instances of dnsdist, with almost the same
config and 6 listeners each,
and we obtained 360/380 kqps, that's a linear increment.
I'm happy to share my results, what else I can send you?
Thanks!
On Mon, Apr 3, 2017 at 5:00 PM, bert hube
017 at 05:44:06PM -0300, Nico wrote:
> > Hi!
> >
> > Thanks for answering!.
> > I'm not pretending to be anonymous.
> > Mi name is Nicolas Baumgarten and I do infrastructure support .
>
> Hi, welcome! Thanks.
>
> > One dnsdist process, whith 12 liste
Hi Remi,
Yes, the new version was almost 30% better in the full config test. Great!
> So quite a noticeable gain but it looks like lock contention is still an
> issue. I would like to understand why, if you don't mind answering a few
> questions.
>
> - You mentioned having 32 cores, are they real
Hi,
we have a large ACL list and have two questions.
1- what is more efficient, iptables or dnsdist ACL?
2- in the case of the ACL we see a large number of acl drops, there is
___
dnsdist mailing list
dnsdist@mailman.powerdns.com
https://mailman.powerdn
Apologies, hit send by mistake.
Again:
we have a large ACL list and have two questions.
1- what is more efficient, iptables or dnsdist ACL?
2- in the case of the ACL we see a large number of acl drops, there is any
way to log
On Wed, May 3, 2017 at 2:15 PM, Nico wrote:
> Hi,
> we
Just to share the experience.
We have 2 dnsdist (1.1.0) running for a mobile user base with 100kqps each
more or less.
We have a bunch of resolvers (unbound and pdns resolver).
And cache, because mobile users only ask for google, facebook and twitter
:-)
cache = newPacketCache(100, 86400, 0,
daniel.stirnim...@switch.ch> wrote:
> On 05.05.18 12:40, Ask Bjørn Hansen wrote:
> >
> >> On May 3, 2018, at 17:25, Nico wrote:
> >>
> >> After some tcpdumping and testing we found that chrome and dns
> tunneling were filing the cache,
> >> eve
Hi all!
Quick question.
We were willing to use NoneAction() to keep counters of queries to certain
domain,
but it doesn't work.
And after a quick look at the sources it's not present (except in the docs).
We checked on version 3 and 1.1.0.
It was removed? There is any other rule we can use to ju
98% hit rate)
Thanks again for this great software!
Nico
On Thu, Apr 6, 2017 at 6:33 PM Nico wrote:
> Hi Remi,
> Yes, the new version was almost 30% better in the full config test. Great!
>
> > So quite a noticeable gain but it looks like lock contention is still an
> > iss
I need some help, if posible, to understand some strange situation.
Unfortunately we can give a method to reproduce it, but we have some hard
data.
We have a couple of dnsdist servers. Half 1.1.0 and half 1.3.2, moving from
old to new.
The 1.1.0 are still getting most of the traffic and the proble
guest negatively cached.
Thanks again.
On Fri, Aug 10, 2018 at 11:27 PM David wrote:
> On 2018-08-10 3:03 PM, Nico wrote:
> > I need some help, if posible, to understand some strange situation.
> > Unfortunately we can give a method to reproduce it, but we have some
> > hard data
Hi,
small question, to check what we may be missing.
We have a big traffic increment from dnsdist to clients and
backend-servers (5 times to clients, an 20 times from backends).
The reason we found is a lot of TXT queries for c9-11.com which results in
almost 4k size answer.
Besides this being s
Hi!
Small question about dynamic block rules
there is no AND for rate limiting rules ?
its always OR
local dbr = dynBlockRulesGroup()dbr:setQTypeRate(dnsdist.ANY, 5, 10,
"Exceeded ANY rate", 60)dbr:setResponseByteRate(1, 10, "Exceeded
resp BW rate", 60)
If I want to limit TXT byte rate for e
Remi Gacogne
wrote:
> Hi Nico,
>
> On 6/1/19 5:39 AM, Nico wrote:
> > Hi!
> > Small question about dynamic block rules
> > there is no AND for rate limiting rules ?
> >
> > its always OR
> >
> > local dbr = dynBlockRulesGroup()
> >
ing the PowerDNS repo [1], 1.1.0
is quite old and you would benefit from newer features/improvements/bug fixes.
[1] https://repo.powerdns.com
--
Nico
___
dnsdist mailing list
dnsdist@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/dnsdist
s the answer, right?
I'd say this is the expected behaviour: as you said, it doesn't make a lot of
sense to cache answers with cookies, as they are not really likely to be
repeated a lot.
Cheers,
--
Nico
___
dnsdist mailing list
dnsdist@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/dnsdist
> On 28 Feb 2024, at 14:26, Affan Basalamah via dnsdist
> wrote:
>
>
> Hi,
>
> I'm responsible for managing DNS server for service providers, and they
> request that DNS server usually have some important domain from my country
> ccTLD that usually can't be resolved because of the their au
> start measuring.
Right. I get your point and this has been reported a lot of times during RIPE
or OARC meetings.
Does that also apply to CF and Q9?
The Op mentioned “Google, CF, Q9 and others”, hence my question.
>> On 28 Feb 2024, at 18:09, Nico Cartron via dnsdist
>> wrote:
20 matches
Mail list logo