How Long for DNS to Update New Records? Understanding DNS Behavior

domain-name-systemwebsite

I had my personal site at freehostia and now i have shifted to some other server. It has been close to a week, and ofcourse as the NameServers changed for the new host, i made the required changes with domain-register-company, for my domain.

Now when i try open to my site, at times it open the new hosted-site, at times it open the 404 page on the old site.

I think 1 week, say even 4 days is a lot of time for DNS propagation to happen. Is this a strange behaviour.

When i open the site from the IP address it opens, but when i open the site with a domain-name, at times it open, and at times it doesnot. Any clue?

I tried with two of my friends, who have never visited my site, so no dns cache on his machine, it opened for one, and didnot open for the other.
thanks

— From http://Squish.net
25.0% of queries will be returned by 66.40.52.47 (dns1.freehostia.com) vks.uni.cc. 3600 IN A 66.40.52.64
25.0% of queries will be returned by 66.40.66.152 (dns2.freehostia.com) vks.uni.cc. 3600 IN A 66.40.52.64
25.0% of queries will be returned by 72.55.164.113 (ns1.softuff.com) vks.uni.cc. 14400 IN A 72.55.164.113
25.0% of queries will be returned by 70.38.29.161 (ns2.softuff.com) vks.uni.cc. 14400 IN A 72.55.164.113

I donot understand what is this 25%, why is it not 100% or 50%
dns1.freehostia.com and dns2.freehostia.com were old servers.
ns1.softuff.com and ns2.softuff.com are new servers.

Best Answer

My answer to this question has a run-down of propagation time that I'll link to instead of copying+pasting here.

More specifically from your question it sounds to me like you authoritative name servers have not been updated (or are listed wrong so the wrong ones are being queried). To see what name server records your local DNS servers thing are being used for the domain you can use the dig <domain.tld> NS like so:

$ dig spillett.net NS
;; ANSWER SECTION:
spillett.net.           316     IN      NS      ns1.nogoodnamesareleft.com.
spillett.net.           316     IN      NS      ns2.nogoodnamesareleft.com.

you can then check them to see if they all have the right address for the name:

$ dig @ns1.nogoodnamesareleft.com www.spillett.net
;; ANSWER SECTION:
www.spillett.net.       349     IN      CNAME   spillett.net.
spillett.net.           349     IN      A       69.94.124.51
;; AUTHORITY SECTION:
spillett.net.           349     IN      NS      ns2.nogoodnamesareleft.com.
spillett.net.           349     IN      NS      ns1.nogoodnamesareleft.com.
;; ADDITIONAL SECTION:
ns1.nogoodnamesareleft.com. 3499 IN     A       69.94.124.137
ns2.nogoodnamesareleft.com. 3499 IN     A       78.105.118.25

(repeat the above for each NS record returned by your first query)

The TTL values returned by the queries directly against your domain's nameservers should always be the actual value set in the zone record (they are low in the example above as that domain was moved around recently and I forgot to set them back up higher when I'd finished), where-as for queries against non-authoritative servers (i.e. one of your default local name servers, which will be queried if dig is not given an @<server> directive) will be how long before that server next checks (against the nameservers listed as NS records for the domain) if its cached version needs to be updated.

Checking the above tests for your domain may give you some more clues as to where the source of the issue lies. If you are using Linux and don't have dig, it is usually found in a package called something like dnsutils (it is called that on Debian ad Ubuntu, I assume a similar arrangement on other distributions) - there are no doubt many ports to Windows (this is the first relevant looking page returned by Google) though I've never used any of them myself.

Related Solutions

How long does it take for DNS records to propagate

"DNS propagation" isn't a real phenomenon, per se. Rather, it is the manifest effect of the caching functionality specified in the DNS protocol. Saying that changes "propagate" between DNS servers is a convenient falsehood that's, arguably, easier to explain to non-technical users than describing all of the details of the DNS protocol. It's not really how the protocol works, though.

Recursive DNS servers make queries on behalf of clients. Recursive DNS servers, typically run by ISPs or IT departments, are used by client computers to resolve names of Internet resources. Recursive DNS servers cache the results of queries they make to improve efficiency. Queries for already-cached information can be answered without making any additional queries. The duration, in seconds, that a result is cached is supposed to be based on a configurable value called the Time To Live (TTL). This value is specified by the authoritative DNS server for the record queried.

There is no one answer to all the questions being asked because DNS is a distributed protocol. The behavior of DNS depends on the configuration of the authoritative DNS server for a given record, the configuration of recursive DNS servers making queries on behalf of client computers, and DNS caching functionality built-in to the client computers' operating systems.

It's good practice to specify a TTL value short enough to accommodate neecssary day-to-day changes to DNS records, but long enough so to create a "win" in caching (i.e. not so short as to age-out of cache too quickly to provide any efficiency improvement). Employing a balanced strategy with TTL values results in a "win" for everyone. It reduces both the load and bandwidth utilization for the authoritative DNS servers for a given domain, the root servers, and the TLD servers. It reduces the upstream bandwidth utilization for the operator of the recursive DNS server. It results in quicker query responses for client computers.

As a DNS record's TTL is set lower load and bandwidth utilization on the authoritative DNS servers will increase because recursive DNS servers will not be able to cache the result for a long duration. As a record's TTL is higher changes to records will not appear to "take effect" quickly because client computers will continue to receive cached results stored on their recursive DNS servers. Setting the optimal TTL comes down to a balancing act between utilization and ability to change records quickly and see those changes reflected on clients.

It is worth noting that some ISPs are abusive and ignore the TTL values specified by the authoritative DNS servers (substituting their own administrative override, which is a violation of RFC). There's nothing to be done about this, from a technical perspective. If the operators of abusive DNS servers can be located complaints to their systems administrators might result in their implementing best practices (arguably what amounts to common sense for any network engineer familiar with DNS). This particular type of abuse isn't a technical problem.

If everybody "plays by the rules" changes to DNS records can "take effect" very quickly. In the case of changing the IP address assigned to an "A" record, for example, an exponential backoff of the TTL value would be performed, leading up to the time the change will be made. The TTL might start at 1 day, for example, and be decreased to 12 hours for a 24 hour period, then 6 hours for a 12 hour period, 3 hours for a 6 hour period, etc, down to some suitably small interval. Once the TTL has been backed-off the record can be changed and the TTL brought back up to the desired value for day-to-day operations. (It is not necessary to use an exponential backoff, however this strategy minimizes the time the record will have a low TTL and decreases load on the authoritative DNS server.)

After making a DNS record change logs should be monitored for access attempts being made as a result of the old DNS record. In the example of changing an "A" record to refer to a new IP address a server should remain present at the old IP address to handle access attempts resulting from client computers still using the old "A" record. Once access attempts based on the old record have reached an acceptably low level the old IP address can be disused. If the requests related to an old record are not abating quickly it is possible that (as described above) a recursive DNS server is ignoring the authoritative TTL. Knowing the source IP address of an access attempt, however, does not provide direct information as to the recursive DNS server responsible for supplying an old record. If the IP addresses of errant access attempts are all related to a single ISP it may be possible to locate the offending DNS server and contact its operator.

Personally, I've seen changes "take effect" immediately, in a few hours, and in some cases with a particular brain-damaged ISP, after several days. Doing a backoff of your TTL and being mindful of how the process works will increase your changes for success, but you can't ever be sure what some well-meaning idiot might be doing with their recursive DNS servers.

Can CNAMEs be used to point to Name Servers

You can not use in NS hostnames, which are CNAMEd lately on route (can't recall RFC-number, but it's prohibited on this level)

Both are shared hosting environments, so I don't think I can use A records

But you can do it:

>nslookup www.lazybadger.net

Non-authoritative answer:
Name:    www.lazybadger.ru
Address:  188.120.246.161
Aliases:  www.lazybadger.net

net cnamed to ru, ru have A

Instead of using such strange DNS-hoster, why not use any independent reliably 3-rd party solution without idiotic limitation? I, personally, have my sites on two different hosters and manage zones independently without any headache

Best Answer

Related Solutions

How long does it take for DNS records to propagate

Can CNAMEs be used to point to Name Servers

Related Topic