[8.161][QUESTION][ANSWERED] Why does my ASG still talk to all the root dns at restart time?

This is an ongoing issue, every restart the stats are useless for that day because of all the packets from the root servers, 1000s of them.

I have use ISPs DNS in the DNS tab, no other DNS entry.

Ian M

0 RFCat_vk_01 over 14 years ago in reply to RFCat_vk_01

By the look of the log files, the packet filter took considerable time to update the display.

I enabled the PF rule that blocks internal going to external DNS and I restarted the ASG another load of dropped packets to root DNS in t he packet filter log.

Ian
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 kbr over 14 years ago

Okay, then i'll guess, as a last resort, we have to follow Bills advice above.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 RFCat_vk_01 over 14 years ago in reply to kbr

Hi kai,
you win, because to change it this time also means I need to understand what I am changing and then have to change it for every up2date installation or rebuild.

I like automatic works well unless it is broken permanently and this is not a crash stop issue.

Ian
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel