Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1229
Views
0
Helpful
2
Replies

DHCP DNS options

Go to solution
billmatthews
Level 1
Level 1

‎06-20-2014 06:11 AM

I have a small office, served by an SA520 and Road Runner cable modem.

What's the recommended setting for our users DNS?  Right now our DHCP (via the built in router DHCP server) passes out it's own address as the DHCP server.  So client machines point to 192.168.1.1 as the DNS server.  Our WAN config on that router then points to the Road Runner DNS servers.  

Would it be better performance if we passed down the direct Road Runner DNS servers to the clients?  Or even the google open DNS servers?  It seems like performance would be better if they went directly to a DNS server rather than proxying through the router.

 

Thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Dan Miley
Level 3
Level 3

‎06-20-2014 11:44 AM

DNS is a distributed system to allow load balancing across multiple dns servers.  basically the sa520 is a caching dns proxy.  The way it works is:

client wants to connect to something (www.cisco.com for example).  The client looks in local dns cache, if it has resolved this recently it will use the locally cached IP to connect.  (fastest)

if the local cache has timed out or does not have an entry for www.cisco.com, the client  goes to its dns server (sa520), if the site is cached there, the SA sends the dns reply back and then the  client goes to the site.  If the site is not cached, the sa520 will go to it's resolver (Roadrunner), and RR dns may go to it's resolver, and the process continues until the dns process gets to a server that knows the .com     .cisco.     and   www  (these might be 3 different servers)

 

but, and here's where the local caching comes in to make it faster.  if you have multiple devices on the network it is likely someone else has already gone to this site, it is cached locally and the router can return a result without resolving over the internet.

This is more important with web pages that have multiple http connections to multiple sites (facebook icons, ads, twitter links, graphics, etc).

Local caching also puts less of a load on the root internet servers, or googles dns.

for a middle config, you can point your SA520 wan dns settings to 8.8.8.8 (google) and see if it impacts your performance, but it really depends on the mix of dns requests that are happening on your network.

generally local caching on the router pointing to a fast dns is the best mix to reduce traffic and DNS querys, but still respond quickly.

 

Note, a lot of 'slow internet' issues are really caused by slow dns resolution (along with bad programming of web pages with 10s or hundreds or links on them.

 

hope it helps, 

Dan

 

 

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Dan Miley
Level 3
Level 3

‎06-20-2014 11:44 AM

DNS is a distributed system to allow load balancing across multiple dns servers.  basically the sa520 is a caching dns proxy.  The way it works is:

client wants to connect to something (www.cisco.com for example).  The client looks in local dns cache, if it has resolved this recently it will use the locally cached IP to connect.  (fastest)

if the local cache has timed out or does not have an entry for www.cisco.com, the client  goes to its dns server (sa520), if the site is cached there, the SA sends the dns reply back and then the  client goes to the site.  If the site is not cached, the sa520 will go to it's resolver (Roadrunner), and RR dns may go to it's resolver, and the process continues until the dns process gets to a server that knows the .com     .cisco.     and   www  (these might be 3 different servers)

 

but, and here's where the local caching comes in to make it faster.  if you have multiple devices on the network it is likely someone else has already gone to this site, it is cached locally and the router can return a result without resolving over the internet.

This is more important with web pages that have multiple http connections to multiple sites (facebook icons, ads, twitter links, graphics, etc).

Local caching also puts less of a load on the root internet servers, or googles dns.

for a middle config, you can point your SA520 wan dns settings to 8.8.8.8 (google) and see if it impacts your performance, but it really depends on the mix of dns requests that are happening on your network.

generally local caching on the router pointing to a fast dns is the best mix to reduce traffic and DNS querys, but still respond quickly.

 

Note, a lot of 'slow internet' issues are really caused by slow dns resolution (along with bad programming of web pages with 10s or hundreds or links on them.

 

hope it helps, 

Dan

 

 

0 Helpful

Go to solution
billmatthews
Level 1
Level 1
In response to Dan Miley

‎06-23-2014 05:07 AM

Excellent explanation, thank you!

0 Helpful
Customers Also Viewed These Support Documents