Re: Expiration TTLs

: Chris Buxton To: Paul Romano Cc: "bind-us...@isc.org" Sent: Sunday, December 2, 2012 7:41 PM Subject: Re: Expiration TTLs On Dec 1, 2012, at 12:17 PM, Paul Romano wrote: > What is a good compromise on zone expiration TTLs?  Our DNS is authoritative > for AD DNS and we w

Re: Expiration TTLs

Zuber To: Paul Romano Cc: "bind-us...@isc.org" Sent: Saturday, December 1, 2012 3:56 PM Subject: Re: Expiration TTLs We go with 1 hour. --Wes On Dec 1, 2012, at 12:17 PM, Paul Romano wrote: What is a good compromise on zone expiration TTLs?  Our DNS is authoritative for AD DNS a

Expiration TTLs

What is a good compromise on zone expiration TTLs?  Our DNS is authoritative for AD DNS and we want to make sure we force records to refresh but do not want to expose ourselves to the risk of zone failures.   Thanks Paul___ Please visit https://lists.is

Re: Compelling Reason for Deploying DNSSEC

?       From: "wbr...@e1b.org" To: Paul Romano Sent: Wednesday, September 14, 2011 8:46 AM Subject: Re: Compelling Reason for Deploying DNSSEC Paul Romano wrote on 09/13/2011 10:13:36 PM: > From: Paul Romano > I am trying to justify deploying DNSSEC to my management.  We have >

Compelling Reason for Deploying DNSSEC

I am trying to justify deploying DNSSEC to my management.  We have many domains and I want to use this project as an opportunity to review and classify our many domains (legacy, defensive, current production, etc.).  Since money is very tight we need a compelling reason to justify the project. I