Introducing SOC Insights for BloxOne Threat Defense: Boost your SOC efficiency with AI-driven insights to eliminate manual work and accelerate investigation and response times. Read the blog announcement here.

NIOS DNS DHCP IPAM

Reply

Partial DTC Functionality with Secondary DNS

Authority
Posts: 12
3752     0

This is a long shot, but still worth asking.

 

Can a hidden master that's running DTC affect secondaries attached to it?

 

For example, we have public DNS providers that secondary to hidden masters at the corporate edge. The hidden masters could run DTC and would be configured to probe backend systems for availability, and thereby dynamically-modify DNS based on environmental triggers. The question would be if the secondaries at the providers would see any changes or if only those performing DNS queries directly against the hidden master would see anything change. I'm guessing no, but it's worth an ask.

 

Thanks

Re: Partial DTC Functionality with Secondary DNS

[ Edited ]
Superuser
Posts: 81
3753     0

Hello There,

 

Short answer : DTC resource records won't propagate via zone transfer.

 

Thus only your primary server licensed/configured for DTC loadbalancing would actually perform the health checks (If configured to do so) -> change the DNS response dynamically based on the RR's availability. & your secondary if not licensed for DTC, would return regular DNS responses(It doesn't see your LBDN record). So if your use-case is to perform load balancing for RRs by *every* Infoblox authoritative servers, then they should all be licensed for DTC. 

 

I hope that late response would address your concern.

 

Best regards.

Showing results for 
Search instead for 
Did you mean: 

Recommended for You