Solved

DNS possible cause of slow response

Posted on 2015-02-09
6
113 Views
Last Modified: 2015-02-16
My users are complaining of slow response accessing the Internet and accessing the application on the internal server. The slow response seems to happen in early afternoon. I am trying to narrow down the troubleshooting process. I am trying to eliminate the DNS as a possible cause of the poor performance. Is there any tool I can use to look at the latency for the name resolution for the internal DNS? Thanks
0
Comment
Question by:leblanc
6 Comments
 
LVL 76

Accepted Solution

by:
arnold earned 250 total points
ID: 40599406
If you have your own DNS server, make sure if you use forwarders that those forwarders are still valid. Better still, note the forwarders, and remove them and see whether that changes the resolution part.

run nslookup -debug www.

depending on your connection, you might be able to monitor usage to see whether your WAN is saturated when this issue comes up.
0
 
LVL 1

Author Comment

by:leblanc
ID: 40599526
What are forwarders?

"depending on your connection, you might be able to monitor usage" How do you monitor the usage of the DNS resolution? Thx
0
 
LVL 76

Expert Comment

by:arnold
ID: 40599615
check your internal name services to see whether it is configured to use external DNS servers to which oit will forward received requests.

You can use network monitor tool or wireshark on the dns server to see whether it is being inundated by requests and the source.
0
Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

 
LVL 57

Assisted Solution

by:giltjr
giltjr earned 125 total points
ID: 40599916
forwarders are DNS servers that your DNS server is configured to forward requests to when your DNS server does not know the answer.

Your DNS server know the host names for all hosts within your domain, but it does not know ALL hosts in the Internet.  For example your DNS server does know the IP address for www.experts-exchange.com.  So when your computer asks your DNS server   to look up the address for www.experts-exchange.com, it needs to pass the request to another DNS servers.

Normally you would configure your DNS server to forward to DNS servers that your ISP provided you with.  Otherwise your DNS server would need to have what is called the root hints file.  This is a list of the root DNS servers on the Internet.
0
 
LVL 76

Assisted Solution

by:arnold
arnold earned 250 total points
ID: 40599967
the bandwidth consumed by dns queries are insignificant these days to justify the use of forwarders as giltjr so kindly explained.
forwarded requests/responses might not be cached such that if your users accessing similar resources from similar sites, with forwarders they do not benefit from faster secondary responses which without forwarders will be returned from the local DNS cache.
It is possible that one of the ISPs DNS servers you have is being fixed, being hit with many other requests from other users, setups such as yours.

to get the list for hints on a linux/unix system

dig . a.root-servers.net NS > hints file

windows, as long as you do not setup the DNS as a root, it will/should have the root hints populated
matching nslookup -q=ns . a.root-servers.net
0
 
LVL 2

Assisted Solution

by:Michael Rojek
Michael Rojek earned 125 total points
ID: 40603528
There's 11 IP tools, including a DNS auditor in the NetCrunch Tools freeware app to help you do some digging.
0

Featured Post

What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
How to create SPF records 3 27
ping a url gives different ip addresses 5 53
FTP output from Wireshak 6 50
OSPF Question 12 22
I wrote this article to explain some important DNS concepts that should be known to avoid some typical configuration errors I often see in forums. I assume that what is described here is the typical behavior of Microsoft DNS client. I don't know …
Network ports are the threads that hold network communication together. They are an essential part of networking that can be easily ignore or misunderstood, my goals is to show those who don't have a strong network foundation how network ports opera…
Viewers will learn how to properly install and use Secure Shell (SSH) to work on projects or homework remotely. Download Secure Shell: Follow basic installation instructions: Open Secure Shell and use "Quick Connect" to enter credentials includi…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now