[dns-operations] NSCD for Linux/UNIX stub resolver failover?

Matthew Pounsett matt at conundrum.com
Wed Apr 23 17:20:34 UTC 2014

On Apr 23, 2014, at 12:10 , Chuck Anderson <cra at WPI.EDU> wrote:

> On Tue, Apr 22, 2014 at 11:27:02PM -0400, Robert Edmonds wrote:
>> Chuck Anderson wrote:
>>> 2. Use a local DNS daemon on every server with forwarders configured
>>>   to the network's nameservers, and fix resolv.conf to
>> I'll shamelessly admit that I do this on all my Debian systems, where
>> "apt-get install unbound resolvconf" results in exactly that
>> configuration.
> Has anyone had good experiences with using NSCD to solve the DNS
> failover problem?

The last time I used solaris for anything it was running nscd by default.  I had mixed experiences with it.  It solved the resolver failover problem fairly well, but brought other issues along with it.  I found it tended to cache things longer than it was supposed to, crashed fairly frequently (reintroducing a cousin of the lookup failure problem that it was solving) and made cache clearing for “emergency” DNS changes more problematic by decentralizing the cache.  

Granted this was a long time ago (over ten years) so the stability and TTL respect problems may have been solved; and that last issue isn’t so much of an issue if we’re talking about home nets instead of larger installations.

More information about the dns-operations mailing list