DNS - Latency Info

When there is high latency in DNS traffic, it might result in sluggish overall experience for end users. This new feature helps administrators quickly identify DNS latency issues in their configuration.

The Interfaces > DNS page shows additional details about DNS latency.

If you use FortiGuard DNS, the information includes latency for regular DNS, DNS filter servers, web filter server, and outbreak prevention servers.

Hover your pointer over a latency value to see the last updated time.

There are no new CLI commands for this feature. DNS latency information is extracted from the CLI data below. See the following examples.

diagnose test application dnsproxy 2

worker idx: 0

worker: count=1 idx=0

retry_interval=500 query_timeout=1495

DNS latency info:

vfid=0 server=2001::1 latency=1494 updated=73311

vfid=0 server=208.91.112.52 latency=1405 updated=2547

vfid=0 server=208.91.112.53 latency=19 updated=91

SDNS latency info:

vfid=0 server=173.243.138.221 latency=1 updated=707681

DNS_CACHE: alloc=35, hit=26

RATING_CACHE: alloc=1, hit=49

DNS UDP: req=66769 res=63438 fwd=83526 alloc=0 cmp=0 retrans=16855 to=3233

cur=111 switched=8823467 num_switched=294 v6_cur=80 v6_switched=7689041 num_v6_switched=6

ftg_res=8 ftg_fwd=8 ftg_retrans=0

DNS TCP: req=0, res=0, fwd=0, retrans=0 alloc=0, to=0

FQDN: alloc=45 nl_write_cnt=9498 nl_send_cnt=21606 nl_cur_cnt=0

Botnet: searched=57 hit=0 filtered=57 false_positive=0

To see the latency from web filter server and outbreak protection server, use the diagnose debug rating command, for example:

diagnose debug rating

Locale : english

Service : Web-filter

Status : Enable

License : Contract

Service : Antispam

Status : Disable

Service : Virus Outbreak Prevention

Status : Disable

-=- Server List (Tue Jan 22 08:03:14 2019) -=-

IP Weight RTT Flags TZ Packets Curr Lost Total Lost Updated Time

173.243.138.194 10 0 DI -8 700 0 2 Tue Jan 22 08:02:44 2019

173.243.138.195 10 0 -8 698 0 4 Tue Jan 22 08:02:44 2019

173.243.138.198 10 0 -8 698 0 4 Tue Jan 22 08:02:44 2019

173.243.138.196 10 0 -8 697 0 3 Tue Jan 22 08:02:44 2019

173.243.138.197 10 1 -8 694 0 0 Tue Jan 22 08:02:44 2019

96.45.33.64 10 22 D -8 701 0 6 Tue Jan 22 08:02:44 2019

64.26.151.36 40 62 -5 704 0 10 Tue Jan 22 08:02:44 2019

64.26.151.35 40 62 -5 703 0 9 Tue Jan 22 08:02:44 2019

209.222.147.43 40 70 D -5 696 0 1 Tue Jan 22 08:02:44 2019

66.117.56.42 40 70 -5 697 0 3 Tue Jan 22 08:02:44 2019

66.117.56.37 40 71 -5 702 0 9 Tue Jan 22 08:02:44 2019

65.210.95.239 40 74 -5 695 0 1 Tue Jan 22 08:02:44 2019

65.210.95.240 40 74 -5 695 0 1 Tue Jan 22 08:02:44 2019

45.75.200.88 90 142 0 706 0 12 Tue Jan 22 08:02:44 2019

45.75.200.87 90 155 0 714 0 20 Tue Jan 22 08:02:44 2019

45.75.200.85 90 156 0 711 0 17 Tue Jan 22 08:02:44 2019

45.75.200.86 90 159 0 704 0 10 Tue Jan 22 08:02:44 2019

62.209.40.72 100 157 1 701 0 7 Tue Jan 22 08:02:44 2019

62.209.40.74 100 173 1 705 0 11 Tue Jan 22 08:02:44 2019

62.209.40.73 100 173 1 699 0 5 Tue Jan 22 08:02:44 2019

121.111.236.179 180 138 9 706 0 12 Tue Jan 22 08:02:44 2019

121.111.236.180 180 138 9 704 0 10 Tue Jan 22 08:02:44 2019