This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DNS Proxy Timeout?

My ISP has kindly informed me that one of our machines is not using timeouts when doing DNS forwarding. I've narrowed down the culprit to possibly being the Astaro firewall itself. I'm running ASL 4.022 (soon to be 5.015). Is there a way to specify a forwarding timeout within ASL so that I don't overload my ISP's servers?

Thanks!

This thread was automatically locked due to age.

0 bagira over 21 years ago

The default timeout is 5 seconds. If the host is not resolvable, the ASL sends every 5 seconds another request. If you have mor than one forwarder defined, the intervall is accordingly longer.
Unfortunatelly it is not possible to configure the timeout on the ASL.

Cheers Dominic
Cancel
Vote Up 0 Vote Down

Cancel
0 HTMLSpinnr over 21 years ago in reply to bagira

I beleive it's the repetition vs. the SERVFAIL response that is causing headaches with our ISP. I've simply had to limit the number of forwarders to 1 or 2 at this point to prevent DOSsing our ISP. In the end, it's generally a faulty record at fault and once the maintainer of the record corrects the offending entry, the retries subside.

Thanks for your response.
Cancel
Vote Up 0 Vote Down

Cancel
0 William Warren over 21 years ago in reply to bagira

[ QUOTE ]
The default timeout is 5 seconds. If the host is not resolvable, the ASL sends every 5 seconds another request. If you have mor than one forwarder defined, the intervall is accordingly longer.
Unfortunatelly it is not possible to configure the timeout on the ASL.

Cheers Dominic

[/ QUOTE ]
yes it is but it involved hacking files in ASL..in order to do that you ahve to ssh as root..when you do that you loose support..
Cancel
Vote Up 0 Vote Down

Cancel