Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Having some issues with something I have configured wrong in RH9, which is causing my RH9 to send very frequent ARP requests to my poor external DNS server. Apart from making my wireless LAN slow, this is also causing wasted bandwidth!!
Basically, my RH9 computer believes it wants to contact a host called 'localhost', so first it sends an ARP to the DNS server (syd.optushome.com.au), which of course replies, no such name. The next step my computer then takes is to attempt to find the host using the resolv.conf file - which has my ISP servers name in it as a default search, so naturally it tries to find localhost there... hence the search for localhost.qld.optushome.com.au.... (or at least I think this is the reason) please see TCPdump below:-
can anyone give me any idea where I could start to try and find the service that is trying to access localhost and causing these needless ARP requests?
Had inadvertantly removed the reference to localhost from the etc/hosts file, some daemon somewhere was trying to do a loop-back using localhost every few seconds, and therefore caused the ARP.
adding the following line to the /etc/hosts file solved the problem:-
localhost 127.0.0.1
I wonder how many hundred GIGABYTES of bandwidth I must have blown to smithereens over the last two years of this machine being on 24/7 before I noticed it was flooding my ISP's DNS server with ARP requests? All of a sudden things seem a lot quicker.
Hope this helps someone else if they are a ninny also :-)
I can't help but have a bit of a giggle at the irony of this one:-
The real world equivalent of what I've been doing for the last few years is posting a letter to the post office every four seconds, asking them to tell me where the hell I live, and putting my return address on the back of the envelope :-)
Distribution: OpenBSD 4.6, OS X 10.6.2, CentOS 4 & 5
Posts: 3,660
Rep:
By the way, those are not "ARP" requests: They're DNS requests. ARP is a link-layer protocol, layer2. DNS is a layer7 protocol (application layer).
A? localhost.qld.optushome.com.au. (48) (DF)
The "A?" doesn't stand for "ARP", it stands for "type-A Resource Record" (i.e. a name-to-IP mapping).
You can tell this be looking here 192.168.0.100.33839 > dns.syd.optusnet.com.au.domain
tcpdump will appened the service name to the hostname in the output, unless you turn off resolution with -n. "Domain" is the shortened name for "Domain Name Service".
Here's an example of an actual ARP request 09:49:48.468367 arp who-has sekhmet.amaunetsgothique.com tell 10.8.1.12
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.