Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Make DNSProxy RFC 8767 compliant - Optimistic caching/stale records #318

Open
iJorgen opened this issue Feb 22, 2023 · 0 comments
Open

Make DNSProxy RFC 8767 compliant - Optimistic caching/stale records #318

iJorgen opened this issue Feb 22, 2023 · 0 comments

Comments

@iJorgen
Copy link

iJorgen commented Feb 22, 2023

Background:

Optimistic caching and serving stale records are great for performance, but in today's implementation it's depending on the cache to be filled up before anything is deleted. If using a big cache-size a record could live in the cache for weeks leading to old data.

Suggestion for three configurable parameters to make DNSProxy RFC 8767 compliant and give the DNS-admin full control:

1. "stale-answer-ttl"
Defines the TTL for a stale record. Today it's hardcoded to 10 seconds, but RFC 8767 recommends a value of 30 seconds for stale records.

2. "max-stale-ttl"
Defines how long a stale record can live in the cache. Recommended values from RFC 8767 is 1-3 days.

3. "stale-refresh-time"
The period for serving a stale answer while updating it upstream. RFC 8767 recommends 30 seconds or higher.

Sources:

https://www.rfc-editor.org/rfc/rfc8767
https://www.isc.org/blogs/2020-serve-stale/
# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@iJorgen