#nixos-on-your-router on 2021-02-03

2019-08-19 13:17 eyJhb changed the topic of #nixos-on-your-router to: NixOS on your Router || https://logs.nix.samueldr.com/nixos-on-your-router

09:51 srk has quit [Remote host closed the connection]

09:51 srk has joined #nixos-on-your-router

10:27 eyJhb has joined #nixos-on-your-router

10:29 <eyJhb> Lately I have been getting DNS lookups that take 3-4 secounds using UNBOUND, this isn't normal, right?

14:15 <andi-> sounds wrong

14:16 <andi-> I've had no problems here

14:16 <andi-> eyJhb: did you check the unbound logs?

15:16 <eyJhb> not yet

15:16 <eyJhb> Is `;; Query time: 832 msec` too much as well andi- ?

15:19 <andi-> Depends on what you are querying and what it has queried before that

15:19 <andi-> If it has to do the entire DNSSEC + root zone dance that is to be expected

15:19 <eyJhb> `dig mobilepay.dk` seems a little much

15:19 <andi-> is it configured as a recursive resolver or does it just forward?

15:20 <eyJhb> Recursive

15:20 <andi-> Try tcpdump'ing what it does

15:20 <andi-> maybe somewhere on the path packets are dropped

15:20 <andi-> and it has to retry

15:27 <eyJhb> andi-: I might do that tomorrow when I am knees deep in NIxOS anyways :D

21:09 <betawaffle> eyJhb: I've been getting slow DNS lookups sporadically since I switched to a DNS server on my router (not unbound)

21:10 <betawaffle> but no, it's not supposed to be that way

21:10 <eyJhb> betawaffle: Mine just happened all of the sudden :( Have used unbound for 1+ year or so

21:10 <hexa-> that happens when you need to recurse and you are slow to reach some authoritative servers

21:10 <hexa-> dns is fast because it is cached at every layer

21:10 <eyJhb> I think it has something todo with a network change out here where I live. It started happening after they did some switch maintanence stuff

21:11 <hexa-> when you are recursing completely on you own you have fewer precached domains

21:12 <eyJhb> But it was a sudden change for me, like I have never noticed it before, but now new pages are noticebly (?) slow.

21:13 <eyJhb> I.e. I get the 4s lookup often

21:13 <hexa-> you can configure unbound to to prefetch records

21:14 <hexa-> that keeps popular records cached and refreshed

23:11 <hexa-> NinjaTrappeur: https://w1.fi/security/2020-2/

23:11 <hexa-> went live 11m ago :D

23:12 <hexa-> > wpa_supplicant v1.0-v2.9 with CONFIG_P2P build option enabled

23:12 <{^_^}> error: syntax error, unexpected WITH, expecting ')', at (string):471:26

23:12 <hexa-> we didn't enable CONFIG_P2P, but maybe it is default … checking

23:13 <hexa-> defconfig

23:13 <hexa-> 506:CONFIG_P2P=y