**this was posted in another forum I suspect wrong one moved here **
Hello all. Let me qualify my question by saying that I am struggling with how to ask the question I am semi green but have no issue reading up if pointed in the right direction. Please be gentle!
A RHEL server 6.2. Hosts a statistical application that has some web apps and batch programming interface.
Problem:
Lately we moved offices.
Now logging in via PuTTy via ssh was taking long so a poweruser set useDNS No that speed up login
Issue: Once we start our application (web app) login speed is fine but any action that requires a response such as navigating, open file, it hour clocks and either ends in error, or in some cases after 5 minutes renders back the requested item.
RAM is 65 GB, 45GB is free (from Top)
Load at most 1.35 usually around .5 avg.
Dedicated to host one application
At most 2-3 concurrent sessions expected but see only 1
tracert was 1ms
Ping replies w/o data loss
Putty session -ssh- connects in seconds
I have run some commands and their output are listed below
Code:
[rsas@lazer ~]$ host -t a lazer.aii-3.com
;; connection timed out; trying next origin
;; connection timed out; no servers could be reached
[rsas@lazer ~]$ host -t ns lazer.aii-3.com
;; connection timed out; trying next origin
;; connection timed out; no servers could be reached
[rsas@lazer ~]$ host -t mx lazer.aii-3.com
;; connection timed out; trying next origin
;; connection timed out; no servers could be reached
[rsas@lazer ~]$ host -a lazer.aii-3.com
Trying "lazer.aii-3.com"
;; connection timed out; trying next origin
Trying "lazer.aii-3.com.aii-3.com"
;; connection timed out; no servers could be reached
[rsas@lazer ~]$ host -6 lazer.aii-3.com
;; connection timed out; trying next origin
;; connection timed out; no servers could be reached
[rsas@lazer ~]$ host 10.20.18.140
;; connection timed out; no servers could be reached
[rsas@lazer ~]$ host -v -t a lazer.aii-3.com
Trying "lazer.aii-3.com"
;; connection timed out; trying next origin
Trying "lazer.aii-3.com.aii-3.com"
;; connection timed out; no servers could be reached
[rsas@lazer ~]$ dig +trace lazer.aii-3.com
; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.17.rc1.el6_4.4 <<>> +trace lazer.aii-3.com
;; global options: +cmd
;; connection timed out; no servers could be reached
[rsas@lazer ~]$ dig +noall +answer lazer.aii-3.com
;; connection timed out; no servers could be reached
I am not sure how to proceed. Any guidance/insight is deeply appreciated.
Last edited by rbatte1; 03-04-2015 at 06:50 AM..
Reason: Added numeric & bullet LIST tags
If you have completely turned off DNS, then you may be unable to resolv anything. If there is a slow login, then this is because the DNS servers are incorrectly configured. I've seen this before and there is about a 30 second login delay as the unix server tries to look up the incoming IP address for logging purposes.
There is a way to limit the timeout, but the real way to fix this is to have the DNS servers respond properly and say "unknown" straight away rather than panic and say nothing. This can be because they are looking to pass on the query to another DNS server that is higher up the tree (so to speak)
I so appreciate your response and time you used. You are in the correct. The problem was two fold. One due to our location move some NAT policies were not updated. 2nd on the server itself, the nameserver was pointing to the firewall server versus the DNS server. Did the correction in resolv.conf. So far so good. I am curious about your nsswitch and I will look that up.
I'm glad it helped. The nsswitch.conf file sets the order that queries are resolved, so you can point to DNS, files, NIS+ etc. in the order that is appropriate to you.
Always better to use DNS than to ignore it. Further changes can be a real nightmare without it.
I am unsure if I should match the value to be consistent or leave them as is...
Here is nsswitch.conf
Code:
#
# /etc/nsswitch.conf
#
# An example Name Service Switch config file. This file should be
# sorted with the most-used services at the beginning.
#
# The entry '[NOTFOUND=return]' means that the search for an
# entry should stop if the search in the previous entry turned
# up nothing. Note that if the search failed due to some other reason
# (like no NIS server responding) then the search continues with the
# next entry.
#
# Valid entries include:
#
# nisplus Use NIS+ (NIS version 3)
# nis Use NIS (NIS version 2), also called YP
# dns Use DNS (Domain Name Service)
# files Use the local files
# db Use the local database (.db) files
# compat Use NIS on compat mode
# hesiod Use Hesiod for user lookups
# [NOTFOUND=return] Stop searching if not found so far
#
# To use db, put the "db" in front of "files" for entries you want to be
# looked up first in the databases
#
# Example:
#passwd: db files nisplus nis
#shadow: db files nisplus nis
#group: db files nisplus nis
passwd: files
shadow: files
group: files
#hosts: db files nisplus nis dns
hosts: files dns
# Example - obey only what nisplus tells us...
#services: nisplus [NOTFOUND=return] files
#networks: nisplus [NOTFOUND=return] files
#protocols: nisplus [NOTFOUND=return] files
#rpc: nisplus [NOTFOUND=return] files
#ethers: nisplus [NOTFOUND=return] files
#netmasks: nisplus [NOTFOUND=return] files
bootparams: nisplus [NOTFOUND=return] files
ethers: files
netmasks: files
networks: files
protocols: files
rpc: files
services: files
netgroup: nisplus
publickey: nisplus
automount: files nisplus
aliases: files nisplus
I hope that this catches your attention and I could get a bit of your time and help. Thank you very much in advance,
RS
---------- Post updated at 01:02 PM ---------- Previous update was at 01:01 PM ----------
nsswitch.conf is from server that had the latency issue and whose IP was corrected in the resolv.conf file.
---------- Post updated at 07:10 PM ---------- Previous update was at 01:02 PM ----------
I did change the other two to match the local dns server address, from my laptop if i do nslookup I get these results and I am a bit puzzled
Hi all,
During reading the code, i met such expressment in a KSH script. I can not figure out what does this mean and don't know how to search it in the web. Could you please check below snippet and let me know what does this mean in a shell script:
VARIABLE=1
if ; then
.... (3 Replies)
as title. and how is it different from PF_INET ?
also, any one knows sin_family , sin_port , sin_addr ..etc ? why are they called 'sin' ?
finally, htons() host to network short , htonl() host to network long , ntohs() network to host short , ntohl() network to host long. why would... (6 Replies)
Hi all,
I am working on following script which is already working and i am trying to understand but could not can any body help me in follwoing script.
I understand that it deletes record from tables. using DB2 import from /dev/null. I dont know where in second portion it loads the data in to... (0 Replies)
Hello Everybody,
I have a Sun Sparc 5 that used to have Solaris 8 on it. I wanted to build my skills at installing the software and then all went wrong for me. This computer is a stand alone, not networked at all. So I got my hands on Solaris 9 Sparc version, I went through the install and at... (1 Reply)
How do you or what is the setup to keep the (server) up from shutting down? It is not server yet but it might very likely become to serve few clients. But, once I get in in the morning its off. It's Sparc, Solaris 8 and I would like to keep it running over night but once it is not attended it... (2 Replies)