ZERO TTL ?!?

Barry Margolin barmar at bbnplanet.com
Thu Mar 9 20:59:36 UTC 2000 

In article <38C7EBD3.6888FF8B at sunbeam.ch>,
Andre Schwaller  <andre at sunbeam.ch> wrote:
>But if you do nslookup (set sebug) from the internet i get TTL set to
>Zero.
>
>ns1    86400 IN NS    195.162.167.201
>ns1    86400 IN NS    10.0.3.1
>ns2    86400 IN NS    195.162.167.202
>ns2    86400 IN NS    10.0.3.2

Those TTLs are 86400, not 0, so what are you talking about?  Does this only
happen when you try to look something up in your domain?

Is this what you're talking about?  My guess is that your NAT router is
doing this.  I think it sets the TTL of translated records to 0 for the
benefit of dynamic translations that might be deleted soon.  What it
probably *should* do is use the idle timer of the translation as the TTL,
and static translations should probably not have the TTL modified at all.
Complain to the NAT vendor.

% dig autobox.ch any !$ +norecurse
dig autobox.ch any @195.162.167.202 +norecurse

; <<>> DiG 2.2 <<>> autobox.ch any @195.162.167.202 +norecurse 
; (1 server found)
;; res options: init defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 10
;; flags: qr aa ra; Ques: 1, Ans: 6, Auth: 2, Addit: 4
;; QUESTIONS:
;;	autobox.ch, type = ANY, class = IN

;; ANSWERS:
autobox.ch.	86400	MX	10 mail.autobox.ch.
autobox.ch.	86400	MX	5 mail.autobox.ch.
autobox.ch.	86400	A	194.209.219.94
autobox.ch.	0	NS	ns2.autobox.ch.
autobox.ch.	86400	NS	ns1.autobox.ch.
autobox.ch.	86400	SOA	ns1.autobox.ch. hostmaster.autobox.ch. (
			2000030942	; serial
			10800	; refresh (3 hours)
			3600	; retry (1 hour)
			604800	; expire (7 days)
			86400 )	; minimum (1 day)

;; AUTHORITY RECORDS:
autobox.ch.	0	NS	ns2.autobox.ch.
autobox.ch.	86400	NS	ns1.autobox.ch.

;; ADDITIONAL RECORDS:
mail.autobox.ch.	86400	A	194.209.219.94
ns2.autobox.ch.	0	A	195.162.167.202
ns2.autobox.ch.	86400	A	195.162.167.202
ns1.autobox.ch.	86400	A	195.162.167.201

;; Total query time: 187 msec
;; FROM: tools to SERVER: 195.162.167.202
;; WHEN: Thu Mar  9 15:50:46 2000
;; MSG SIZE  sent: 28  rcvd: 256

>---------------------
>but if i delete the internal ip's it does work but then everything is
>going to wend on my provider which is not wat i want (traffic for
>nothing! and in switzerland traffic is extreamly expensive)

I'm not sure what you mean here.  If your users are pointing to your DNS
server, they'll never go out to the ISP's nameservers when they're looking
up names that your server hosts.  NS records are only used by remote
servers to find your servers.

-- 
Barry Margolin, barmar at bbnplanet.com
GTE Internetworking, Powered by BBN, Burlington, MA
*** DON'T SEND TECHNICAL QUESTIONS DIRECTLY TO ME, post them to newsgroups.
Please DON'T copy followups to me -- I'll assume it wasn't posted to the group.

More information about the bind-users mailing list