[Dnsmasq-discuss] Problems with dnsmasq + authentication with AD
Erling Ringen Elvsrud
erlingre.lists at gmail.com
Tue Mar 17 09:03:31 GMT 2015
Hi,
We use AD to authenticate users for our Linux-servers.
Recently we started to try out dnsmasq in order to get better
dns-request performance, better resiliance (more dns-servers, avoid
timeout:1, etc with the standard glibc resolver).
Today I noticed that about every fifth logon attempt is a lot slower than
normal (10x the time). If I stop dnsmasq the slowdowns seems to
dissapear.
I can see with many ad-related dns-queries with wireshark when logon is slow
like ForestDnsZones.mydomain and DomainDnsZones.mydomain.
The replies are large (tcp-based) these queries returns
20-30 A-records for many domain-controllers.
Are you aware of similar problems with the dnsmasq / ad-integration
combination?
Thanks,
Erling
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/attachments/20150317/333a8c10/attachment.html>
More information about the Dnsmasq-discuss
mailing list