| View previous topic :: View next topic |
| Author |
Message |
1veedo
Apprentice
Joined: 19 Dec 2005
Posts: 152
|
 Posted: Mon May 25, 2009 5:12 pm Post subject: DNS caching with dnsproxy |
 |
|
I'm currently using privoxy and squid to filter and cache web traffic (trying to speed things up).
I'm also wanting to cache dns requests and switch my dns server to be not my own ISP. I'm behind a router so my nameserver is just my router.
There's an emerge called dnsproxy but I'm not sure how to use it. The configuration file is fairly simple. Am I supposed to change my nameserver to point to the host in that file (localhost:53000)? |
|
| Back to top |
|
 |
1veedo
Apprentice
Joined: 19 Dec 2005
Posts: 152
|
| Posted: Mon May 25, 2009 5:32 pm Post subject: |
|
|
So I discovered dnsmasq and have it configured currently to use my router. | Code: | # Generated by dhcpcd from eth0
# /etc/resolv.conf.head can replace this line
#search Belkin
nameserver 127.0.0.1
# /etc/resolv.conf.tail can replace this line |
In dnsmasq.conf I have server=192.168.2.1 .
Two questions:
What kind of dns servers should I use? My ISP's doesn't seem to work very well. I'm thinking that if I cache dns queries that will significantly reduce the load on my ISP but I'd like to find some other dns servers anyway, maybe use my ISP's as a last resort.
When DNS requests either fail or time out, my ISP redirects me to some bogus search engine run by the company. Can I configure dnsmasq to send those requests to google or to just respond that the dns request failed?
Something here might be important, | Code: |
# If you want to disable negative caching, uncomment this.
#no-negcache
# Normally responses which come form /etc/hosts and the DHCP lease
# file have Time-To-Live set as zero, which conventionally means
# do not cache further. If you are happy to trade lower load on the
# server for potentially stale date, you can set a time-to-live (in
# seconds) here.
#local-ttl=
# If you want dnsmasq to detect attempts by Verisign to send queries
# to unregistered .com and .net hosts to its sitefinder service and
# have dnsmasq instead return the correct NXDOMAIN response, uncomment
# this line. You can add similar lines to do the same for other
# registries which have implemented wildcard A records.
#bogus-nxdomain=64.94.110.11 |
Also, what exactly is dnsproxy?? Is it similar to dnsmasq? |
|
| Back to top |
|
|
vaguy02
Guru
Joined: 25 Feb 2005
Posts: 424
Location: Hopefully in one place
|
| Posted: Tue May 26, 2009 3:24 pm Post subject: |
|
|
I"m not sure if dnsmasq has this ability or not, but Bind will allow you to forward DNS requests to specific DNS servers. Although, Bind is much more difficult to setup than dnsmasq. I bounce off a couple independent DNS Servers not tied to my ISP. (I hate my ISP).
Vaguy02
_________________
Linux Registered User #458185
Intel Quad-Core w/ 4gigs Ram w/ 8800 GTX - Windows 7 RC
2x (Intel Dual-Core w/ 2gigs Ram - Gentoo)
Mac G5 Dual-Core w/ 2gigs Ram - OS 10.5 |
|
| Back to top |
|
|
|
Networking & Security
