Troubleshooting zone transfer status issues

If Edge DNS does not seem to be reporting correct DNS information, configure DNS NOTIFY on your primary name servers to send these requests to all zone transfer agents (ZTAs).

Once DNS NOTIFY is configured on your primaries, they should notify the ZTAs when the zone file has changed to trigger a zone transfer. As long as at least one ZTA accepts the NOTIFY, Edge DNS has your current zone data.

In contrast, when DNS NOTIFY is not configured, there might be some latency between the time the primary zone file is updated and the time the data is propagated to the Edge DNS name servers.

If you see this latency symptom, perform the following steps.

  1. Ensure that the correct information is in the zone file on your primary name server.
  2. If DNS NOTIFY is not enabled, check that the refresh interval in your start of authority (SOA) record meets your expectations. When DNS NOTIFY is not enabled, the zone transfer agents check with your primary name server at the refresh interval listed in your SOA record. The refresh interval, expressed in seconds, is the second numeric field in your SOA record.

    For example, in the following SOA record, the refresh interval is 10800 seconds (= 180 minutes = 3 hours). 86400 IN SOA ( 2002010402 10800 3600 604800 86400 )

    Here is a description of all the SOA record parameters:

    Parameter Description
    86400 TTL (time to live)
    IN Internet category of records
    SOA Start of authority (a zone’s master record) Primary name server Current customer contact information
    2002010402 Serial number (a higher number is newer)
    10800 Refresh frequency (wait time, in seconds, before checking with the primary name server)
    3600 Retry frequency
    604800 Expiration delay (seconds to continue handing out answers if unable to check for updates)
    86400 Negative TTL (time to wait after getting a response that a record does not exist)

How to

  1. Log in to Control Center.
  2. Go to > DNS SOLUTIONS > Edge DNS.
  3. On the Zone list page:
  4. Try querying each of the Edge DNS name servers serving your domain to see if they all return the same information. You can query a specific name server by using the dig command:

    dig @nameserver-ip hostname

    The Edge DNS system has built-in fault tolerance to account for cases in which one zone transfer agent might not be able to reach one of the Edge DNS name servers. While data should be consistent across the name servers, it is helpful to have this data point.