query dropping vs. returning nxdomain

Danny Mayer mayer at ntp.isc.org
Wed Mar 8 14:27:53 UTC 2006

Mark Andrews wrote:
> Whatever we do we have to be very very careful.
> Some MS nameservers put a 60 second dead time after seeing a EDNS
> query.  This really has made deploying EDNS a pain. I'm sure MS
> thought that this was a "good idea" but it definitely has had bad
> consequences.

Do you mean this? (from KB837928):

> CAUSE: This problem occurs because a DNS server suppresses responses
> when the server detects a format error in a DNS request. Because DNS
> does not support EDNS, the EDNS query is detected as a bad format DNS
> query. After a Windows 2000 DNS server detects a bad format query,
> the server does not respond to the computer that sent the query for
> 60 seconds.

Windows 2K3 does support EDNS0 but is not widely deployed.


