Linux - ServerThis forum is for the discussion of Linux Software used in a server related context.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
The requested URL could not be retrieved
-----------------------------------------------------------------------------
While trying to retrieve the URL: http://www.google.com/search?
The following error was encountered:
Unable to determine IP address from host name for www.google.com
The dnsserver returned:
Refused: The name server refuses to perform the specified operation.
This means that:
The cache was not able to resolve the hostname presented in the URL.
Check if the address is correct.
Your cache administrator is root.
-------------------------------------------------------------------------
(squid/2.6.STABLE6)
If I reloaded the page using CTRL + F5, the page will then loading normally. Does somebody already know what is going on here?
The dnsserver returned:
Refused: The name server refuses to perform the specified operation.
This means that:
[FONT="Fixedsys"] The cache was not able to resolve the hostname presented in the URL.
Given that I am tempted to believe that the error message (although it may just be a mis-statement of the condition) means what it says, that sounds like the problem is with the nameserver, or just possibly the interaction between squid and the nameserver.
Have you anyway of observing what the nameserver thinks about this (logs, dig)? What is the nameserver (bind?).
Have you tried with, e.g., wireshark, to see whether the messages suggest that there is a timeout occuring (perhaps the timeout is occuring on the internet side or perhaps it is occuring between the nameserver and squid)?
the DNS is on ISP-side, not local. I have use their DNS in other box which is not behind a proxy and such thing never happened so i do believe that it's not the DNS, perhaps there is a misconfiguration in my firewall or the squid.. hmm..
what made me confused is that thing happening only few times, maybe when peak-traffic times that made things harder to be analyzed.
Distribution: OpenBSD 4.6, OS X 10.6.2, CentOS 4 & 5
Posts: 3,660
Rep:
For a machine that is going to generate as many DNS requests as a proxy server, it's probably a good idea to run a local caching-only nameserver to increase performance.
As for the error, since the recent patches to BIND, performance has gone down quite a bit. It's not uncommon now for a DNS server to be overloaded with too many recursive queries and not be able to answer new queries. Also due to the port randomization being used, some firewalls are closing the temporary rule to allow UDP responses before the reply actually comes back, but that would result in a time-out error instead of a refused error.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
