[dns-operations] Change to BIND minimal-responses config option
Mukund Sivaraman
muks at isc.org
Sat Apr 22 02:39:32 UTC 2017
On Sat, Apr 22, 2017 at 08:05:13AM +0530, Mukund Sivaraman wrote:
> Hi Duane
>
> On Fri, Apr 21, 2017 at 08:44:52PM +0000, Wessels, Duane wrote:
> > Hi Mukund,
> >
> > Thanks for the heads-up.
> >
> > I wonder how well we understand the consequences that
> > minimal-responses has on cached NS records? If my authoritative
> > servers for a second-level domain like example.com uses
> > minimal-responses, then will a recursive cache ever receive the NS
> > RRset from the authoritative servers? Or will it only have the RRset
> > from the parent (com), which might also have different TTLs?
>
> It will not receive them unless it queries for them.
I mean to say that the parent NS records as part of the delegation
answer will not be overwritten in this case (unless the resolver queries
the child zone explictly for NS).
Mukund
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: not available
URL: <https://lists.dns-oarc.net/pipermail/dns-operations/attachments/20170422/f6931212/attachment.sig>
More information about the dns-operations
mailing list