On Sat, Mar 26, 2016 at 09:36:04PM +0000, Tony Finch wrote: > > * caching SERVFAIL, as recommended (section 4), raises an interesting > > question: for how long? (Unlike NXDOMAIN, SERVFAIL answers do not > > provide an indirect TTL) > > This is a feature of the forthcoming BIND 9.11. The default servfail-ttl > is one second. (I don't know if other servers have a similar feature.) > > https://source.isc.org/cgi-bin/gitweb.cgi?p=bind9.git;a=blob;f=CHANGES;hb=refs/heads/master#l1370
SERVFAIL caching is permitted by RFC 2308 for up to five minutes. It's described as optional there. I don't think it's a good idea to use the word "should" in this new draft. -- Evan Hunt -- e...@isc.org Internet Systems Consortium, Inc. _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
