From owner-freebsd-questions@FreeBSD.ORG Mon Jun 6 22:36:47 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2AB6616A41C for ; Mon, 6 Jun 2005 22:36:47 +0000 (GMT) (envelope-from dwinner-lists@att.net) Received: from mtiwmhc12.worldnet.att.net (mtiwmhc12.worldnet.att.net [204.127.131.116]) by mx1.FreeBSD.org (Postfix) with ESMTP id B6B6B43D4C for ; Mon, 6 Jun 2005 22:36:46 +0000 (GMT) (envelope-from dwinner-lists@att.net) Received: from [10.10.0.101] (pcp04365033pcs.glstrt01.nj.comcast.net[68.44.159.157]) by worldnet.att.net (mtiwmhc12) with ESMTP id <2005060622380511200b8do9e>; Mon, 6 Jun 2005 22:38:09 +0000 Message-ID: <42A4CFEE.4090900@att.net> Date: Mon, 06 Jun 2005 18:36:30 -0400 From: Duane Winner User-Agent: Mozilla Thunderbird 1.0.2 (Windows/20050317) X-Accept-Language: en-us, en MIME-Version: 1.0 To: ben@stonehenge-net.com References: <21064.66.201.44.146.1118079993.squirrel@mailhenge.com> In-Reply-To: <21064.66.201.44.146.1118079993.squirrel@mailhenge.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-questions@freebsd.org Subject: Re: strange network behaviour X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Jun 2005 22:36:47 -0000 ben@stonehenge-net.com wrote: >on Friday i set up 4 old celeron boxes as DNS servers for a client. after >about 5 minutes, their ability to reach the network vanishes... they can't >ping their router, and inbound network traffic vanishes. rebooting fixes >the problem... for another ~ 5 min. > >the only things running are chrooted bind, postfix, and webmin. ipfw is >on, with firewall_type="open". i've also tried it with ipfw disabled. > >The same thing happens with my laptop, which is also running 5-STABLE as >of about noon on friday. > >I know this sounds like a network issue, but is there anything in the >system that might cause thist type of behavior? it doesn't seem to be the >hardware - my laptop is a pentium M centrino system with a bg nic, and >they're old Celeron 500 machines with fxp nics. > > > I believe something happenend out there in DNS land around noon on Friday...on the root servers possibly? I've been struggling with slow SSH and SSL connections that started around that time, and when I've posted, others have reported similar things...all starting around noon on Friday. AFAIK, something happened that affected reverse DNS lookups...on the machines on which I was able, I could fix SSH by setting "UseDNS no" in sshd_config. Today, I cured all the slowness (I think so far) by adding in-addr.arpa zones for my internal 10.x.x.x subnets.