Period of Slow dns resolution and I need Help!!!!

From: Joe Hardin (spepa_at_c-gate.net)
Date: 12/25/04 

Date: Fri, 24 Dec 2004 18:52:00 -0600

Here's my setup:

Windows 2000 servers. Very stable and extremely stable intranet dns
resolution for over 2 years.

New Bell T-1 to the internet with a high end Symantec firewall.

Dns forwarding is setup on the internal Win 2K dns servers. They forward to
the Bell dns servers, (2 of them).

The firewall does not play a role in the dns forwarding, we had that
function disabled because it was slow.

*********************

Here's the problem:

You can have very good browsing for many hours in the day. When loading a
site like www.cnn.com, the site will start loading within 2-3 seconds and
the user is satisfied.

Then you'll go thru a period, where the wait for what appears to be external
resolution and the return of the http data to the browser will increase to
5-12 seconds. Very seldom will it timeout, but you know that something is
running slow and not efficiently. Bell provided 2 dns servers for us to
forward to, and they are properly setup on our internal dns servers.

I don't really know why we are experiencing this. Finally, when a webpage
loads, after that, any browsing to subsequent links on that page are very
fast. So if you are in a slow period and the home page of cnn loads after
10 seconds, then any other links on that page will load in 1-2 seconds.

Can anyone provide any direction? I would appreciate anyone's help or
advice. Sometimes there is advice to check the number of hops to a site,
but I don't know how many hop or latency is too much for a resolution.

Thanks again,

Joe Hardin
Taylorsville, MS

spepa@c-gate.net

Relevant Pages

  • Re: How Secure is ".Local?"
    ... > dozen servers and ~500 websites/public domains. ... Shadow DNS ... Is your DC on the Internet? ... >>It is not going to provide your zone info to anyone ...
    (microsoft.public.win2000.dns)
  • RE: New Forest - Old Domain - Plus DMZ - Help Please
    ... Make sure Windows XP client should use the AD DNS ... The Cert should match the name in Internet. ... New Forest - Old Domain - Plus DMZ - Help Please ... vast majority of our inside production equipment is 2003 servers and XP ...
    (microsoft.public.windows.server.migration)
  • Re: Active Directory and child DNS Zone
    ... > Our internal and external DNS domains are both the same - mycompany.com. ... > hosts our external domain and it only contains entries for our web servers ... >>> but the test bed isn't a true picture (no internet access to test VPN, ...
    (microsoft.public.windows.server.dns)
  • Re: DNS design questions
    ... We're a medium size college campus with about 10,000 users and the CIO wants to have DNS locally housed. ... only a hand full to a few dozen max "Internet servers" while ... how big of a security issue really is allowing the "external" DNS server pull a zone transfer from an internal one? ...
    (microsoft.public.windows.server.dns)
  • Re: How Secure is ".Local?"
    ... dozen servers and ~500 websites/public domains. ... I'm weighing the importance of split-brain DNS ... >It is not going to provide your zone info to anyone ... >on the Internet since local is NOT a zone in the ...
    (microsoft.public.win2000.dns)