Negative Caching trouble

phn at icke-reklam.ipsec.nu phn at icke-reklam.ipsec.nu
Tue Aug 3 15:47:35 UTC 2004


Jaysheel Mehd <jmehd at hns.com> wrote:
> Hey Everyone,

> Every now and then I am stumbling into the problem of negative caching 
> on my DNS server. The intranet DNS server seems to resolve the MX, A 
> records of the domain absolutely fine. The domain in question here is 
> shns.com.cn. While the external DNS server seems to fumble to get the 
> records.

> The DNS records of the domain shns.com.cn seems absolutely fine. Also, 
> my intranet and extranet servers run the same version of BIND. It is 
> BIND-9.2.1.

> Once, I dump the cache everything works fine. Why the DNS server should 
> behave in such a fashion and what should be done to resolve it permanently?

> Thanks
> Jaysheel

The domain has a few glitches and a major problem :

Both nameservers uses outdated root-hints

TTL used is way to low (1h ) 

bind-9.2.1 ought to be updated, 9.2.3 is current

and the major problem, both nameservers are located on the same
spot on the globe, thus any disturbancese or overloading of
the link will render the domain inaccessible.


-- 
Peter Håkanson         
        IPSec  Sverige      ( At Gothenburg Riverside )
           Sorry about my e-mail address, but i'm trying to keep spam out,
	   remove "icke-reklam" if you feel for mailing me. Thanx.


More information about the bind-users mailing list