Guide
TrainingSupportCommunity

Troubleshoot zone transfer status issues

Suggest Edits

Configure DNS NOTIFY

If Edge DNS doesn't seem to be reporting correct DNS information, configure DNS NOTIFY on your primary name servers to send these requests to all zone transfer agents (ZTAs). When DNS NOTIFY is not configured, there might be some latency between the time the primary zone file is updated and the time the data is propagated to the Edge DNS name servers. Once DNS NOTIFY is configured, your primaries should notify the ZTAs when the zone file has changed to trigger a zone transfer. As long as at least one ZTA accepts the NOTIFY, Edge DNS has your current zone data.

  1. Ensure that the correct information is in the zone file on your primary name server.

  2. If DNS NOTIFY is not enabled, check that the refresh interval in your start SOA record meets your expectations. When DNS NOTIFY is not enabled, the zone transfer agents check with your primary name server at the refresh interval listed in your SOA record. The refresh interval, expressed in seconds, is the second numeric field in your SOA record.

    For example, in this SOA record, the refresh interval is 10800 seconds (= 180 minutes = 3 hours).

    example.com 86400 IN SOA ns1.example.com.hostmaster.example.com. ( 2002010402 10800 3600 
604800 86400 )

    Here is a description of all the SOA record parameters:

    • 86400. TTL (time to live).
    • IN. Internet category of records.
    • SOA. Start of authority, a zone’s master record.
    • ns1.example.com. Primary name server.
    • hostmaster.example.com. Customer contact information.
    • 2002010402. Serial number. A higher number is newer.
    • 10800. Refresh frequency. Wait time, in seconds, before checking with the primary name server.
    • 3600. Retry frequency.
    • 604800. Expiration delay. Seconds to continue handing out answers if unable to check for updates.
    • 86400. Negative TTL. Time to wait after getting a response that a record does not exist.

Verify zone information

  1. Log in to ​Control Center​.

  2. Go to > DNS SOLUTIONS > Edge DNS. The Zone list page opens.

  3. On the Zone list page:

    • View the zone transfer status to look for any error messages related to a zone transfer from your primary name server.
    • Click the zone name and verify that the primary name server IP address for your domain is correct.
    • Verify that your network environment allows zone transfers from the zone transfer agent IP addresses. See Restrict zone transfers to the ZTAs.

  4. Try querying each of the Edge DNS name servers serving your domain to see if they all return the same information. You can query a specific name server by using the dig command:

$ dig @nameserver-ip hostname

The Edge DNS system has built-in fault tolerance to account for cases in which one zone transfer agent might not be able to reach one of the Edge DNS name servers. While data should be consistent across the name servers, it's useful to have this data point.

Updated 7 months ago