<div dir="ltr"><div><div><div><div>Hi Simon <br><br></div>Thanks for the reply, Yes you are rite, Truncated bit is set in the message. I am seeing ";; Truncated, retrying in TCP mode." in the answer. But it is expected and answer is more than 512 bytes (which is size of UDB packet). TCP port 53 is allowed , but DNS respone time from dnsmasq service is more than 3 sec sometime 4 or 5 sec. When we query directly upstream server we are seeing the response on avg of 100 to 200 ms.<br><br></div>Is there anyway we can make DNS query faster in dnsmasq server, because it is making our application timeouts.<br><br></div>Regards<br></div>Harish Shetty<br></div><div class="gmail_extra"><br><div class="gmail_quote">On Mon, May 7, 2018 at 7:03 PM, Simon Kelley <span dir="ltr"><<a href="mailto:simon@thekelleys.org.uk" target="_blank">simon@thekelleys.org.uk</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">That's large enough to need TCP.<br>
<br>
What I'd expect top happen is that the upstream server returns an answer<br>
with the truncated bit setin the header. This answer gets returned by<br>
dnsmasq to the original requestor. The original requestor makes a TCP<br>
connection to dnsmasq and re-sends the query. Dnsmasq makes a TCP<br>
connection upstream and send the query, and gets the result. It then<br>
send the result back down the TCP connection to the original requestor.<br>
<br>
Anything blocking or distrupting TCP connections on port 53 is suspect.<br>
An non-responsive upstream server will cause delays whilst the<br>
connection times out.<br>
<br>
Try running the query direct to the upstream servers using dig +vc<br>
<br>
Cheers,<br>
<br>
Simon.<br>
<br>
<br>
On 07/05/18 13:57, Harish Shetty wrote:<br>
> Hi All<br>
> <br>
> I am facing some issue with dnsmasq. Currently I am using dnsmasq-2.48<br>
> , I am using this as my forwarder and caching sever. But my problem is,<br>
> when i query for a high payload SRV record (answer size is about 3500<br>
> bytes) response time some times crosses 4000ms, and intermittently timeout.<br>
> <br>
> I have tried enabling the logquries, but it didnt give much information<br>
> to me, Any suggestion on the debugging or more details will be helpful<br>
> <br>
> Regards<br>
> Harish Shetty<br>
> <br>
> <br>
> <br>
> <br>
> ______________________________<wbr>_________________<br>
> Dnsmasq-discuss mailing list<br>
> <a href="mailto:Dnsmasq-discuss@lists.thekelleys.org.uk">Dnsmasq-discuss@lists.<wbr>thekelleys.org.uk</a><br>
> <a href="http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss" rel="noreferrer" target="_blank">http://lists.thekelleys.org.<wbr>uk/mailman/listinfo/dnsmasq-<wbr>discuss</a><br>
> <br>
<br>
______________________________<wbr>_________________<br>
Dnsmasq-discuss mailing list<br>
<a href="mailto:Dnsmasq-discuss@lists.thekelleys.org.uk">Dnsmasq-discuss@lists.<wbr>thekelleys.org.uk</a><br>
<a href="http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss" rel="noreferrer" target="_blank">http://lists.thekelleys.org.<wbr>uk/mailman/listinfo/dnsmasq-<wbr>discuss</a><br>
</blockquote></div><br></div>