Search Knowledge Base Articles

Configuring time to live (TTL) for the negative responses

Time To Live Settings

You can specify TTL (time to live) settings for EfficientIP host records and resource records. TTL is the time that a name server is allowed to cache data. After the TTL expires, the name server is required to update the data. Setting a high TTL reduces network traffic, but also renders your cached data less current. Conversely, setting a low TTL renders more current cached data, but also increases the traffic on your network.

Problem: when you query the server on a RR that does not exist it will cache the answer for 3600 seconds by default, if you have created the RR and started querying the server you will still get NXDOMAIN as an answer for 3600 seconds( 1 Hour).

Solution: change the minimum TTL on zone level, set it to 15 minutes as an example, this will be the new TTL for the negative responses.

Did you find this article useful?


Related Articles

  • Measure QPS on BIND9

    BIND9 DNS engine was installed on Ubuntu server, the goal is to measure the QPS by enabling the statistics.Installing the BIND9 command: sudo apt inst...

  • Enabling DNSSEC on an external zone

    Domain Name System Security Extensions (DNSSEC) is used to strengthen DNS protocol security.It controls the integrity of all DNS answers and ensures t...

  • Utilizing ioc2rpz.net as open source RPZ

    ioc2rpz community is a portal which provides open source DNS Firewall / RPZ feeds. The DNS Firewall feeds are based on publicly available threat intel...

  • Enable Guardian for nonsupported interfaces

    Broadcom interface is not supported by default, only intel interfaces are supported for the Guardian service. this workaround only for POC: 1. login...

  • Cascaded DNS

    EDNS: Port 53 is reserved for DNS usage, DNS uses both UDP and TCP for message transport.Conventional message exchanges are short, and thus well suit...