Requesting tips on setting TTLs so that expired RRSIG data doesn't stay in the zone

Reference: http://dnssec-debugger.verisignlabs.com/imouto.my How to configure named (version BIND 9.9.2-P1-RedHat-9.9.2-2.P1.el5) so that expired RRSIG data doesn't stay in the zone? I heard it has omething to do with the TTL of the zone (the expiry timer in that zone's SOA). The named.conf has

Re: Requesting tips on setting TTLs so that expired RRSIG data doesn't stay in the zone

On 12/14/2012 10:48 AM, GS Bryan wrote: Reference: http://dnssec-debugger.verisignlabs.com/imouto.my How to configure named (version BIND 9.9.2-P1-RedHat-9.9.2-2.P1.el5) so that expired RRSIG data doesn't stay in the zone? I heard it has omething to do with the TTL of the zone (the expiry timer

Re: Requesting tips on setting TTLs so that expired RRSIG data doesn't stay in the zone

zone imouto.my { type master; file zones/imouto.my/imouto.my.conf; allow-transfer { imoutomy; }; notify yes; also-notify { redacted }; max-journal-size 50k; key-directory redacted;

Re: Requesting tips on setting TTLs so that expired RRSIG data doesn't stay in the zone

On Dec 14, 2012, at 2:48 AM, GS Bryan wrote: Reference: http://dnssec-debugger.verisignlabs.com/imouto.my How to configure named (version BIND 9.9.2-P1-RedHat-9.9.2-2.P1.el5) so that expired RRSIG data doesn't stay in the zone? I heard it has omething to do with the TTL of the zone (the