> Date: Mon, 04 Oct 2010 17:29:33 +0200 > From: Anand Buddhdev <ana...@ripe.net> > Sender: bind-users-bounces+oberman=es....@lists.isc.org > > On 04/10/2010 16:01, online-reg wrote: > > > Hi All: I think this is a little OT, but Iâm wondering why changes to > > my NS records arenât propagating when my NS is authoritative for my > > domain? > > > > enigmedia.com is registered at NetSol and delegated to my NS: > > > > ns.enigmedia.com (running on bind9/fedora) ns1.enigmedia.com (running > > on bind9/Freebsd) > > > > Global TTL is 3h and TTL for the âNS1â record is 1200, but after > > changing the IP address of ns1 more than 24 hrs ago, it is not being > > picked up by NetSolâs servers. > > > > NetSol is returning the old record: 209.159.154.165, while my zone > > file has 216.218.228.131. > > > > Iâve seen this issue reported over the years, and the recommendation > > seems to be âcomplain to NetSolâ. > > > > Just wondering if something in my zone config is wrong, or if this is > > normal for changes to NS records? NetSol is just ignoring my TTLs and > > caching the old IP for as long as it wants? > > I don't think NetSol automatically checks for updates to glue records. > You'll have to manually change the A records of your servers at NetSol > for them to be able to propagate the glue into the com zone.
I know that netsol (and the other registrars) do not update glue based on what is returned from an NS query to the current authoritative server. Doing so would create a huge security issue and an easy way to hijack DNS. Once DNSSEC is in place, it will become feasible to do this, but I would seriously discourage anyone from holding his or her breath while waiting (for technical, economic and political reasons). -- R. Kevin Oberman, Network Engineer Energy Sciences Network (ESnet) Ernest O. Lawrence Berkeley National Laboratory (Berkeley Lab) E-mail: ober...@es.net Phone: +1 510 486-8634 Key fingerprint:059B 2DDF 031C 9BA3 14A4 EADA 927D EBB3 987B 3751
_______________________________________________ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
