On 7/8/19 10:56 AM, Paul Vixie wrote: > i've always sent back SERVFAIL when the zone isn't loaded, on either a primary > or secondary (authoritative, that is) server. and i cache SERVFAIL on the > recursive/iterative side with a holddown timer equal to the negative TTL > interval (SOA.MINIMUM). > > but i didn't realize that the standard doesn't say to do this, until i read > the above. > > -- > Paul > > BIND returns REFUSED, so that's what I've always used, for maximum consistency/compatibility. What SOA.minimum are you returning? Which SOA? And on what record would it be returned? The issue is that there is no matching zone. -- Michael Sheldon Dev-DNS Services GoDaddy.com _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
- [DNSOP] Caching of negative zone (non-authoritative) re... Michael J. Sheldon
- Re: [DNSOP] Caching of negative zone (non-authorit... Ted Lemon
- Re: [DNSOP] Caching of negative zone (non-auth... Michael J. Sheldon
- Re: [DNSOP] Caching of negative zone (non-... Ted Lemon
- Re: [DNSOP] Caching of negative zone (... Michael J. Sheldon
- Re: [DNSOP] Caching of negative z... Ted Lemon
- Re: [DNSOP] Caching of negati... Michael J. Sheldon
- Re: [DNSOP] Caching of negative zone (non-authorit... Paul Vixie
- Re: [DNSOP] Caching of negative zone (non-auth... Michael J. Sheldon
- Re: [DNSOP] Caching of negative zone (non-... Ted Lemon
- Re: [DNSOP] Caching of negative zone (... Michael J. Sheldon
- Re: [DNSOP] Caching of negative z... Ted Lemon
- Re: [DNSOP] Caching of negative zone (non-... Paul Vixie
- Re: [DNSOP] Caching of negative zone (... Shane Kerr
- Re: [DNSOP] Caching of negative zone (non-authorit... Mark Andrews
- Re: [DNSOP] Caching of negative zone (non-auth... Ted Lemon
- Re: [DNSOP] Caching of negative zone (non-... Mark Andrews
- Re: [DNSOP] Caching of negative zone (... Ted Lemon
- Re: [DNSOP] Caching of negative z... Mark Andrews