NXDOMAIN cache

Alexandre J. Correa (Onda) alexandre at onda.net.br
Sun Oct 25 17:44:36 UTC 2015


i think cache-min-ttl is for 'positive' responses...

cache-min-negative-ttl sounds like that i need (but there´s no such option).

would be something like this:

if $SOA->MIN_TTL < $cfg->cache-min-negative-ttl { $SOA->MIN_TTL = 
$cfg->cache-min-negative-ttl; }


of course it´s a violation of the protocol... but what i need is 
maintain the negative responses in the cache... (because it´s a dnsbl 
server), a lot of queries will return negative (for good mails), latest 
test reached 17kk queries / second ... 90% negative responses ...

all this work is for fight spam (a lot of spam). dnsbl works inverse as 
the 'dns service' (negative responses is good).

thanks for the answers !!!

and.. if you like, you can contact to use/test SPFBL .. it can break 90% 
of spam.. and it´s open and free !!

regards,


Em 25/10/2015 14:20, Stephane Bortzmeyer via Unbound-users escreveu:
> On Sun, Oct 25, 2015 at 12:59:23AM -0700,
>   Dave Warren via Unbound-users <unbound-users at unbound.net> wrote
>   a message of 58 lines which said:
>
>> Unbound has a "cache-max-negative-ttl", but no minimum is listed at
>> https://unbound.net/documentation/unbound.conf.html
> I disagree, there is:
>
>   cache-min-ttl: <seconds>
>                Time to live minimum for  RRsets  and  messages  in  the  cache.
>                Default  is  0.  If the minimum kicks in, the data is
> 	      cached for ...
>
> Note that, unlike cache-max-ttl, it is a violation of the protocol
> and, of you use it, horrible things may happen.
>


-- 
Sds.

Alexandre Jeronimo Correa
Sócio-Administrador

Office: +55 34 3351 3077

Onda Internet
www.onda.net.br




More information about the Unbound-users mailing list