Troubleshooting zone transfer status issues
Once DNS NOTIFY is configured on your primaries, they should notify the ZTAs when the zone file has changed to trigger a zone transfer. As long as at least one ZTA accepts the NOTIFY, Edge DNS has your current zone data.
In contrast, when DNS NOTIFY is not configured, there might be some latency between the time the primary zone file is updated and the time the data is propagated to the Edge DNS name servers.
If you see this latency symptom, perform the following steps.
- Ensure that the correct information is in the zone file on your primary name server.
- If DNS NOTIFY is not enabled, check that the refresh interval in your start of authority
(SOA) record meets your expectations. When DNS NOTIFY is not enabled, the zone transfer
agents check with your primary name server at the refresh interval listed in your SOA
record. The refresh interval, expressed in seconds, is the second numeric field in your
For example, in the following SOA record, the refresh interval is 10800 seconds (= 180 minutes = 3 hours).
example.com 86400 IN SOA ns1.example.com.hostmaster.example.com. ( 2002010402 10800 3600 604800 86400 )
Here is a description of all the SOA record parameters:
Parameter Description 86400 TTL (time to live) IN Internet category of records SOA Start of authority (a zone’s master record) ns1.example.com Primary name server hostmaster.example.com Current customer contact information 2002010402 Serial number (a higher number is newer) 10800 Refresh frequency (wait time, in seconds, before checking with the primary name server) 3600 Retry frequency 604800 Expiration delay (seconds to continue handing out answers if unable to check for updates) 86400 Negative TTL (time to wait after getting a response that a record does not exist)
- Log in to Control Center.
- Go to .
On the Zone list
- View the zone transfer status to look for any error messages related to a zone transfer from your primary name server.
- Click the zone name and verify that the primary name server IP address for your domain is correct.
- Verify that your network environment allows zone transfers from the zone transfer agent IP addresses.
Try querying each of the Edge
name servers serving your domain to see if they all return the same information. You can
query a specific name server by using the dig command:
dig @nameserver-ip hostname
The Edge DNS system has built-in fault tolerance to account for cases in which one zone transfer agent might not be able to reach one of the Edge DNS name servers. While data should be consistent across the name servers, it is helpful to have this data point.