From mboxrd@z Thu Jan  1 00:00:00 1970
From: Paul Simmons <mbatranch@gmail.com>
To: development@lists.ipfire.org
Subject: Re: [RFC] unbound: Increase timeout value for unknown dns-server
Date: Mon, 25 Jan 2021 14:29:39 -0600
Message-ID: <12e9159f-727e-b8d1-a8a8-a22715dbad69@gmail.com>
In-Reply-To: <01083479-A167-47E6-8B06-7E7BD3F3D3C6@ipfire.org>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============5997211214801023085=="
List-Id: <development.lists.ipfire.org>

--===============5997211214801023085==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

On 1/25/21 1:23 PM, Michael Tremer wrote:
> Hello everyone,
>
> So what does that leave us with?
>
> Should we drop the patch because it does not change anything and the correc=
t solution would be using TCP as underlying protocol?
>
> -Michael
>
>> On 19 Jan 2021, at 06:22, Paul Simmons <mbatranch(a)gmail.com> wrote:
>>
>> On 1/16/21 2:13 AM, Tapani Tarvainen wrote:
>>> On Fri, Jan 15, 2021 at 09:02:08PM -0600, Paul Simmons (mbatranch(a)gmail=
.com) wrote:
>>>
>>>>>> echo 'unknown-server-time-limit: 1128' >/etc/unbound/local.d/timeouts
>>>> I've found that UDP doesn't work at all.  TCP with "timeout" mod never
>>>> fails.
>>> You might also try if UDP works with
>>>
>>> delay-close: 1500
>>>
>>> instead of or in addition to the unknown-server-time-limit.
>>>
>> Howdy!
>>
>> I tried UDP with both mods ('unknown-server-time-limit: 1128' && 'delay-cl=
ose: 1500').  Unfortunately, I experienced intermittent resolution errors.
>>
>> Am now using TCP...  no apparent errors, but resolution is SssLllOooWww, j=
ust as before.
>> (total.recursion.time.avg=3D4.433958 total.recursion.time.median=3D3.65429=
 total.num.recursivereplies=3D1515)
>>
>> Thank you for your efforts.  Latency on "HughesNot" is insurmountable, but=
 (barely) beats no connectivity.  I hope to try Starlink, if/when it becomes =
available for my latitude (30.9 North).
>>
>> Paul
>>
>> --=20
>> It is hard for an empty bag to stand upright.  -- Benjamin Franklin, 1757
>>
I haven't studied the metrics from unbound, so can't say if the modified=20
timeouts help to avoid retransmissions.

As of this moment, TCP works, albeit slowly.=C2=A0 If you'd rather drop the=20
patch, I'm okay with that.

Thanks for all the effort!

Paul


--===============5997211214801023085==--