slow DNS resolution

domain-name-system bind nameserver

Solution 1:

I strongly suspect that you have a broken firewall between the DNS server and Internet that drops long DNS responses that are normal with DNSSEC. Try running dig with "+dnssec" option and see if it starts timing out too.

Cisco PIX/ASAs, up until very recent versions, are known to behave like this by default: https://supportforums.cisco.com/thread/2013390.

Related

Forward port to another Ip/port
postfix user unknown in virtual alias table [duplicate]
nagios nrpe unable to read output
How do you prevent users from using USB drives which circumvent security
How do I get nginx to issue 301 requests to HTTPS location, when SSL handled by a load-balancer?
Why do hosting companies charge so much just for RAM?
Why did this website DNS change fail in some parts of the US
How to set OpenVPN client bind address?
Debugging a timeout with ldap auth on apache
What are the benefits of XServe hardware and Mac OS X Server?
ubuntu - how can I avoid typing a password on every admin action?
Edit Hard Disk Serial Number with VMware