|
Last change
on this file since 13911 was 13911, checked in by rick, 8 years ago |
|
Stripping the number of resolvers unbound can use.
Unbound does not handle multiple resolvers well it internal 'logic' keeps
pounding and checking all resolvers making it a very slow process. By limiting
the count of resolvers it sould be more happy.
Count limititing is done using two-phase approch, firstly the initial resolvers
are limited to a fixed set of resolvers, secondly the list is updated based on
the results of the zone inquiries.
While here, ensure the listen is set on dynamic ranges ensuring failing
interfaces will not bring down the DNS server.
Making the list more limited and based on active resolvers.
|
-
Property svn:executable
set to
*
|
|
File size:
657 bytes
|
| Line | |
|---|
| 1 | #!/bin/sh
|
|---|
| 2 | #
|
|---|
| 3 | # Rick van der Zwet <info@rickvanderzwet.nl>
|
|---|
| 4 | #
|
|---|
| 5 | # Update local autoritive DNS server, by transfering zone files from master
|
|---|
| 6 | # using HTTP protocol
|
|---|
| 7 | #
|
|---|
| 8 |
|
|---|
| 9 | # Avoid hammering source, sleep random delay
|
|---|
| 10 | if [ "$1" = "cron" ]; then
|
|---|
| 11 | sleep $(jot -r 1 900)
|
|---|
| 12 | fi
|
|---|
| 13 |
|
|---|
| 14 | # Fetch source files
|
|---|
| 15 | fetch -T 5 -o /tmp/dns.tar.gz.enc http://wirelessleiden.nl/dns/latest.tar.gz.enc || exit 1
|
|---|
| 16 |
|
|---|
| 17 | # Check if file has transfered succesfully
|
|---|
| 18 | openssl enc -bf -pass pass:dns -in /tmp/dns.tar.gz.enc -out /dev/null -d 2>/dev/null || exit 1
|
|---|
| 19 |
|
|---|
| 20 | # Unpack files
|
|---|
| 21 | openssl enc -bf -pass pass:dns -in /tmp/dns.tar.gz.enc -d | tar -C /tmp -xzvf -
|
|---|
| 22 |
|
|---|
| 23 | # Reload autoritive DNS Server
|
|---|
| 24 | nsd-control reload
|
|---|
Note:
See
TracBrowser
for help on using the repository browser.
