 |
 | Home | Contact Us | FAQ | Search & Site Map | Link to Us |
 | Sign In | Join | Other 45 Sites in Network |
Java Forum / General / October 2005VERY Slow SSL Connection from Win to Linux
Hi, I have a client application connecting to a server using SSL. The connection is very very slow. When I add the server ip to the windows hosts file it connects quickly but I don't want to rely on users doing this .... I tried removing all calls to InetAddress.getByName to avoid DNS lookup but it didn't help. I found the the bottleneck is the SSLSocketFactory.createSocket call. Any ideas ??? Thanks. > I have a client application connecting to a server using SSL. The > connection is very very slow. When I add the server ip to the [quoted text clipped - 4 lines] > > Any ideas ??? Yes, don't rely on the users adding anything to their host files, fix your DNS server instead. There are probably two (maybe more) places where DNS is used: when the client connects using a symbolic name, and when the server does a reverse lookup to determine who the client is. Use a tool like ethereal to diagnose the problem. /gordon  Signature[ do not email me copies of your followups ] g o r d o n + n e w s @ b a l d e r 1 3 . s e Hi, thnx for the quick reply. I'm using Ethereal to monitor the network , and when NOT defining the server in the "hosts" file - i've notice many NBNS queries (udp,port 137 . netbios-name-service...) . On the other hand - when i added the server to the "hosts" file, i didn't see even one query... , so it seems like client's problem , and not server's problem . any ideas ? > I'm using Ethereal to monitor the network , and when NOT defining the > server in the "hosts" file - i've notice many NBNS queries (udp,port [quoted text clipped - 5 lines] > > any ideas ? Yes, just one - this hardly seems to be a java programming issue, so I'd suggest a more appropriate forum (such comp.protocols.misc, or a windows specific group). /gordon Signature[ do not email me copies of your followups ] g o r d o n + n e w s @ b a l d e r 1 3 . s e Thanks you very much for your help. I'll try other forums. > Hi, > thnx for the quick reply. [quoted text clipped - 7 lines] > > any ideas ? I think that part of the process of establishing the authenticity of the SSL server is that the client will check that the server IP matches that of the hostname in the certificate. That you client is using netbios-name-service rather than DNS is most likely a feature of Windows. SignatureNigel Wade, System Administrator, Space Plasma Physics Group, University of Leicester, Leicester, LE1 7RH, UK E-mail : nmw@ion.le.ac.uk Phone : +44 (0)116 2523548, Fax : +44 (0)116 2523555 >I'm using Ethereal to monitor the network , and when NOT defining the >server in the "hosts" file - i've notice many NBNS queries (udp,port [quoted text clipped - 4 lines] > >any ideas ? If it appears the DNS lookup is not being cached, have a look at the master time to Live of the master domain server for your domain name to see if you need to put a longer freshness date on it. You need to know about DNS/BIND to do this. see http://mindprod.com/jgloss/dns.html SignatureCanadian Mind Products, Roedy Green. http://mindprod.com Java custom programming, consulting and coaching. Free MagazinesGet these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...
|
Reply to this Message
|
 Sign In
 Join
 My Latest Posts My Monitored Threads My Blog My Photo Gallery My Profile My Homepage Start New Thread Enable EMail Alerts Rate this Thread
|
©2009 Advenet LLC Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.