From owner-freebsd-isp@FreeBSD.ORG Wed Aug 30 18:04:17 2006 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BAA7416A4DD for ; Wed, 30 Aug 2006 18:04:17 +0000 (UTC) (envelope-from john@essenz.com) Received: from beck.quonix.net (beck.quonix.net [146.145.66.90]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5CAF343D5F for ; Wed, 30 Aug 2006 18:04:11 +0000 (GMT) (envelope-from john@essenz.com) Received: from beck.quonix.net (localhost [127.0.0.1]) by beck.quonix.net (8.13.7/8.13.7) with ESMTP id k7UI4AKI095990 for ; Wed, 30 Aug 2006 14:04:10 -0400 (EDT) Received: from localhost (essenz@localhost) by beck.quonix.net (8.13.7/8.13.7/Submit) with ESMTP id k7UI4AQm095987 for ; Wed, 30 Aug 2006 14:04:10 -0400 (EDT) X-Authentication-Warning: beck.quonix.net: essenz owned process doing -bs Date: Wed, 30 Aug 2006 14:04:10 -0400 (EDT) From: John Von Essen X-X-Sender: essenz@beck.quonix.net To: freebsd-isp@freebsd.org In-Reply-To: Message-ID: <20060830135428.U95055@beck.quonix.net> References: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed X-Spamassassin-Score: -1.442/6 ALL_TRUSTED,SPF_HELO_PASS,SPF_PASS X-Mimedefang: beck.quonix.net X-Scanned-By: MIMEDefang 2.57 on 146.145.66.90 Subject: Question about a high load BIND server setup... X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 30 Aug 2006 18:04:17 -0000 I currently have a FreeBSD 6-STABLE (a few months old) machine running bind 9.3.2. It is a caching only name server for a large base of internet T1 customers (like 5000 customers). I just upgraded to 9.3.2 today. I have been having memory issues. For starter, when the named pid grows res mem to around 500m it craps out and stops resolving. The tentative fix was to restart bind every night at 2am. However, today, the res mem grow from 25m at startup to 500m in about 4 hours. Quicker then usually, so I thought maybe there was a memory leak, and thats why I upgraded to the latest version of bind. I need some pointers. I know alot of people dont recommend bind for large caching environments, but right now we can't easily change the setup. So I am trying to stabilize things as-is. The server used to be Redhat linux, just recently did it move to FreeBSD 6. My sysctl kernel params are standard, somaxconn was bumped up to 512. I was also thinking about enabling kern.ipc.shm_use_phys. Do you think that will help? TUNING man pages says it improves memory performance for pids that use alot of memory. During peak, the server is pushing around 1.6Mbps of pure dns traffic. Here is my named.conf options: directory "/etc/namedb"; pid-file "/var/run/named/pid"; dump-file "/var/dump/named_dump.db"; statistics-file "/var/stats/named.stats"; listen-on { 127.0.0.1; 209.50.171.81; }; recursive-clients 10000; auth-nxdomain no; tcp-clients 10000; max-cache-size 400000000; Any ideas? Would something like djbdns really help? I can switch, but can't do it for at least a week while we wait for new hardware. Thanks John