lame-ttl is an option in named.conf which defines the number of seconds to cache lame delegations or lame servers i.e servers which are marked as authoitative but do not respond as authoritative. Set that option to 0 so that you will never cache a bad delegation.
max-ncache-ttl sets the maximum time (in seconds) for which the server will cache negative (NXDOMAIN) answers. Set this option to 60. See if that helps. On Mon, 2011-07-25 at 08:22 -0600, Sathyan Arjunan (sarjunan) [CONTRACTOR] wrote: > Recent days, I am facing frequent caching issues with my DNS servers > which are responsible for recursive lookup to external queries. As a > temporary solution, we used to refresh the named daemon to clear the > cache. To isolate this issue we upgraded the BIND to “BIND 9.7.3” but > even after the upgrade issue repeats. > > > > If I do a nslookup for “mail.sin.gpi-g.com”, it fails. > > > > nslookup mail.sin.gpi-g.com > Server: dnsserver > > Address: x.x.x.x#53 > > > > ** server can't find mail.sin.gpi-g.com: SERVFAIL > > > > To fix this I have to restart the named daemon in caching DNS server. > Once I restart, the lookup resolves well. However the issue appears > again in few days. Any thoughts? > > > > nslookup mail.sin.gpi-g.com > > Server: dnsserver > > Address: x.x.x.x#53 > > > > Non-authoritative answer: > > Name: mail.sin.gpi-g.com > > Address: 203.175.163.180 > > > > Regards, > > --Sathyan > > > _______________________________________________ > Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe > from this list > > bind-users mailing list > bind-users@lists.isc.org > https://lists.isc.org/mailman/listinfo/bind-users _______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
