Routerboard as DNS

ihernandez · June 1, 2014, 5:25pm

Hello guys, I have a RB1100AHx2 and I’ve been using it as a DNS server and it’s working fine. However some times the response is rather slow and would like to know what could be happening. I have blocked requests from the internet and only my clients can make DNS requests. The cpu has spikes up to 50% and /tools profile on cli tells me that up to 37% of the processor is used by DNS. These are momentary spikes.
Could you point me in the right direction?

TheWiFiGuy · June 1, 2014, 6:20pm

The only direction I can point you in is to not use Mikrotik as DNS server - it causes us no end of problems! In fact, had a DNS stop resolving today on a CCR 6.13 , resulting in 1000+ users on a hotel network not being able to browse the net.

rextended · June 1, 2014, 10:01pm

I use 6.10 on RB1200 as DNS “proxy” and I never have one single problem.
The CPE using DNS server proxy are +3800…
[admin@Server DNS e NTP] /ip dns> print
servers: 8.8.8.8,8.8.4.4
dynamic-servers:
allow-remote-requests: yes
max-udp-packet-size: 4096
query-server-timeout: 2s
query-total-timeout: 10s
cache-size: 10240KiB
cache-max-ttl: 1d
cache-used: 10159KiB
[admin@Server DNS e NTP] /ip dns>
[admin@Server DNS e NTP] /system resource> pri
uptime: 2d20h4m18s
version: 6.10
build-time: Feb/12/2014 13:46:18
free-memory: 471.9MiB
total-memory: 504.3MiB
cpu: 460GT
cpu-count: 1
cpu-frequency: 999MHz
cpu-load: 7%
free-hdd-space: 41.0MiB
total-hdd-space: 64.0MiB
write-sect-since-reboot: 32386
write-sect-total: 9160723
bad-blocks: 0%
architecture-name: powerpc
board-name: RB1200
platform: MikroTik
[admin@Server DNS e NTP] /system resource>
[admin@Server DNS e NTP] /tool> profile
NAME CPU USAGE
ethernet all 0%
console all 0.5%
dns all 14.5%
firewall all 0%
networking all 1%
winbox all 0%
logging all 0%
management all 0%
idle all 84%

TheWiFiGuy · June 2, 2014, 7:50am

Its all very well to say you never had a problem, but uptime is 2days on that screenshot, and CPU is 7%.

How many users, logins, DNS requests per day are you talking? On a hotspot with 2000+ logins per day, typically 1400 online at any one time, we do see DNS taking a huge battering - some of which I guess is firewall rules resolving the HOSTS in IP WALLED GARDEN IP (Facebook, Paypal etc)

rextended · June 2, 2014, 8:06am

The uptime is 2 days because each 28d @ 04:00 AM the script auto reboot the machine.
Each CPE / HotSpot are DNS proxy, and when the routerboard reboot, there is not appreciable problem, because is up on only10 sec…

You use unique hotspot for all the point of presence???
I use one hotspot for point, with same Radius and DNS server…