Are failures cached?
Mark Andrews
Mark_Andrews at isc.org
Tue Apr 29 00:15:00 UTC 2008
> We had an issue last week where our Registrar displayed incorrect DNS
> servers for our primary domain for several hours before we realized it
> and corrected the issue. We're still investigating how the original
> problem occurred but my question isn't about that. There was no spoof
> site corrected as attempts to resolve our domain website or its MX
> record returned no information as it wasn't on the (wrong) target DNS
> servers.
> The issue was that it appeared many people (including AT&T) seemed to
> fairly quickly get the wrong information so quit sending us email but
> took 2-3 days to get the right information once we'd corrected the
> situation. Are failures to resolve domains cached?
Yes. ~10 minutes.
Your problem is that the bad delegation records were cached and
it took some time to flush from caches that learnt the wrong
values.
Note: the 2 day TTL.
; <<>> DiG 9.3.4-P1 <<>> water.com @a.gtld-servers.net
; (2 servers found)
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 7566
;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 2, ADDITIONAL: 2
;; QUESTION SECTION:
;water.com. IN A
;; AUTHORITY SECTION:
water.com. 172800 IN NS dswadns1.water.com.
water.com. 172800 IN NS dswadns2.water.com.
;; ADDITIONAL SECTION:
dswadns1.water.com. 172800 IN A 12.44.84.213
dswadns2.water.com. 172800 IN A 12.44.84.214
;; Query time: 373 msec
;; SERVER: 2001:503:a83e::2:30#53(2001:503:a83e::2:30)
;; WHEN: Tue Apr 29 10:13:21 2008
;; MSG SIZE rcvd: 105
Mark
> If so are they
> cached longer than actual domain records? Would the TTL for the wrong
> DNS server be used for a domain for which it wasn't authoritative when
> determining how long to keep a cached record?
> ----------------------------------
> CONFIDENTIALITY NOTICE: This e-mail may contain privileged or confidential in
> formation and is for the sole use of the intended recipient(s). If you are no
> t the intended recipient, any disclosure, copying, distribution, or use of th
> e contents of this information is prohibited and may be unlawful. If you have
> received this electronic transmission in error, please reply immediately to
> the sender that you have received the message in error, and delete it. Thank
> you.
> ----------------------------------
>
>
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark_Andrews at isc.org
More information about the bind-users
mailing list