Tony Finch <d...@dotat.at> writes: > In the first round, the ANAME processor will choose a 30s TTL. > > In the second round, 30s later, it will get the target address records > from the cache with a 15s TTL, so it'll choose a 15s TTL. > > The in the third round it'll be back to 30s. > > The TTL will flip-flop, and there will be a lot of unwanted zone updates. > > This is ugly :-( I'm not sure what the best solution is.
Require DNSSEC for ANAME support and use the Original TTL field from the RRSIG records. Bjørn _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
