From owner-freebsd-questions@FreeBSD.ORG Wed Jan 27 21:21:25 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id ADE4E106566C for ; Wed, 27 Jan 2010 21:21:25 +0000 (UTC) (envelope-from cswiger@mac.com) Received: from asmtpout028.mac.com (asmtpout028.mac.com [17.148.16.103]) by mx1.freebsd.org (Postfix) with ESMTP id 961DA8FC0C for ; Wed, 27 Jan 2010 21:21:25 +0000 (UTC) MIME-version: 1.0 Content-transfer-encoding: 7BIT Content-type: text/plain; charset=us-ascii Received: from cswiger1.apple.com ([17.209.4.71]) by asmtp028.mac.com (Sun Java(tm) System Messaging Server 6.3-8.01 (built Dec 16 2008; 32bit)) with ESMTPSA id <0KWX0088VCNJC670@asmtp028.mac.com> for freebsd-questions@freebsd.org; Wed, 27 Jan 2010 13:21:25 -0800 (PST) X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 spamscore=0 ipscore=0 phishscore=0 bulkscore=0 adultscore=0 classifier=spam adjust=0 reason=mlx engine=5.0.0-0908210000 definitions=main-1001270178 From: Chuck Swiger In-reply-to: Date: Wed, 27 Jan 2010 13:21:18 -0800 Message-id: References: <979FD2CE-FCCE-4C61-8FA8-74D75E091C43@mac.com> To: James Smallacombe X-Mailer: Apple Mail (2.1077) Cc: freebsd-questions@freebsd.org Subject: Re: named "error sending response: not enough free resources" X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 27 Jan 2010 21:21:25 -0000 Hi-- On Jan 27, 2010, at 1:15 PM, James Smallacombe wrote: >>> Jan 26 21:50:32 host named[667]: client #57938: error sending response: not enough free resources >>> Jan 26 21:50:32 host named[667]: client #59830: error sending response: not enough free resources >> >> Were these client IPs expected to be talking to this machine? It > > This server is authoritative for a few hundred domains, so I would imagine anybody doing a query on any of them would need to talk to it...unless I misunderstand what you mean by "talk". OK, if the nameserver is published / authoritative, then it would be expected to be fielding requests from the Internet at large. >> indicates a problem sending UDP traffic; netstat -s output would be > > Unfortunately, I did not have time for netstats or tcpdumps when this was happening and I've not seen this log entry since yesterday evening. Unless you rebooted the machine again since the errors were reported, the netstat output would still be relevant. >> informative. You might find that setting options in named.conf to tune the # of outstanding queries will help: >> >> clients-per-query 10; >> max-clients-per-query 20; > > Thanks, I will look into those. the man page for named.conf doesn't tell you much and my latest cricket book is 3rd edition (only up to BIND 8), so I guess it's time to break down and get the latest. Good luck.... -- -Chuck