Re: BIND Performance with Huge RPZ

2013-07-12 Thread Vernon Schryver
> From: Noel Butler > > BIND9 releases can be with the BIND RRL patches by following the link > > labeled "Patch files for BIND9" on http://www.redbarn.org/dns/ratelimits > > > > Both of those versions are or will be in official BIND releases. > > I've lost track of which releases have or will ha

RE: BIND Performance with Huge RPZ

2013-07-12 Thread Arie L. Putra
To: "Arie L.Putra" Cc: "bind-users@lists.isc.org" Subject: Re: BIND Performance with Huge RPZ On Jul 12, 2013, at 3:11 AM, Arie L. Putra wrote: > We are building a server for recursive DNS Server, this server will be acted > as a cache for our network. (several user-sid

Re: BIND Performance with Huge RPZ

2013-07-12 Thread Noel Butler
On Fri, 2013-07-12 at 16:31 +, Vernon Schryver wrote: > Patches for both of those versions of RPZ speed improvements for some > BIND9 releases can be with the BIND RRL patches by following the link > labeled "Patch files for BIND9" on http://www.redbarn.org/dns/ratelimits > > Both of those

Re: BIND Performance with Huge RPZ

2013-07-12 Thread Vernon Schryver
> From: Steven Carr > It's very difficult to predict the impact on performance in general. Yes, the reasonable tactic is to build a representative list of queries from your query logs and use queryperf to hit a test server with those 800K policy zone labels. >

Re: BIND Performance with Huge RPZ

2013-07-12 Thread Chris Buxton
On Jul 12, 2013, at 3:11 AM, Arie L. Putra wrote: > We are building a server for recursive DNS Server, this server will be acted > as a cache for our network. (several user-side DNS Server will forward to > this server) > Using Ubuntu Server with latest BIND version, we are trying to have RPZ >

Re: BIND Performance with Huge RPZ

2013-07-12 Thread G.W. Haywood
Hi there, On Fri, 12 Jul 2013, Arie L. Putra wrote: We are building a server for recursive DNS Server, this server will be acted as a cache for our network. (several user-side DNS Server will forward to this server) Using Ubuntu Server with latest BIND version, we are trying to have RPZ incuded

Re: BIND Performance with Huge RPZ

2013-07-12 Thread Phil Mayers
On 12/07/13 11:11, Arie L. Putra wrote: Has anyone have experience, how RPZ with huge list will impact BIND performance, will it reduce DNS response time? we have six DNS server that will point to this server, each server is serving about 15Mbps of DNS Traffic on peak hour. We don't have that

Re: BIND Performance with Huge RPZ

2013-07-12 Thread Steven Carr
On 12 July 2013 11:11, Arie L. Putra wrote: > > Has anyone have experience, how RPZ with huge list will impact BIND performance, will it reduce DNS response time? we have six DNS server that will point to this server, each server is serving about 15Mbps of DNS Traffic on peak hour. > > this server

BIND Performance with Huge RPZ

2013-07-12 Thread Arie L. Putra
Dear All, We are building a server for recursive DNS Server, this server will be acted as a cache for our network. (several user-side DNS Server will forward to this server) Using Ubuntu Server with latest BIND version, we are trying to have RPZ incuded in this BIND, with around 800k blacklis