I'm having a trouble with squid (and dansguardian) in my network that slows web page browsing.
I'm focused now in the DNS queries - i think the DNS can share part of the blame. I've observing my machine with wireshark and the server with tcpdump.
I'm observing that, when i request a page, my machine tries to resolve the name and the squid server also does the same. Is this a normal behaviour ? Shouldn't my machine forward the request to the proxy and then the proxy server resolves the name and makes the request to that web page ?
My Firefox (if I make a mistake in the web page name) stays 30 seconds (i guess this has something to do with dns timeout) blocked (but really blocked) until the proxy server sends a default squid page of domain not found...or until the DNS resolves the query..
My question is only if my machine and my proxy server really have both to make the DNS query or it should only be the proxy server...
Thank you.
In general, yes, your local browser will try to resolve the hostname in DNS before sending the request to the proxy. With Firefox this is configurable using the
network.proxy.socks_remote_dnssetting. To modify this setting:about:configin the location bar.network.proxy.socks_remote_dnsin the search field.network.proxy.socks_remote_dnsitem to change it fromfalse(the default) totrue.With this enabled, Firefox should pass requests to the proxy without performing DNS resolution locally.
NB: I don't know for certain if this applies only to
socksproxies or not.