![[ DNS Administrator ]](/fx/dnsadmin-logo.png){kind=logo}
Opened 17 months ago
#84 new task
Clamp TTLs on export for RRsets
| Reported by: | Kris Deugau | Owned by: | |
|---|---|---|---|
| Priority: | minor | Milestone: | |
| Version: | Keywords: | ||
| Cc: |
Description
Per updates in https://www.rfc-editor.org/rfc/rfc2181#section-5.2, multiple records for the same FQDN and type must have the same TTL. Clients must either discard mismatched records pending fresh lookup from a (more) authoritative server, or (if that was THE authoritative server) clamp TTLs to the lowest in the set.
Since this is required, we should watch for this both on data entry and on data export.
This also seems to be an underlying requirement for DNSSEC as well, as same-name-same-type records are grouped together for signing.
Note:
See TracTickets
for help on using tickets.
