DNS SOA Expire is 1 week, RFC recommends 2 weeks

Discussion in 'General' started by TonyG, Nov 19, 2020.

  1. TonyG

    TonyG Active Member

    I'd like to understand why the default DNS zone SOA expire time is 604800 seconds, which is 1 week. The 1996 RFC 1912 page 4, recommends 2-4 weeks. See also, the 1999 RIPE NCC recommendation is the same. Section 4.5:
    While it is only a recommendation, and any value is acceptable, services that check for RFC compliance flag this value. Personally I prefer to have as few reasons as possible for any other server to flag my servers as being "out of the norm" in any way. So the 1 week value is acceptable, but I am using 2 weeks, and I recommend a change to the ISPConfig default template for this value as well.

  2. Th0m

    Th0m ISPConfig Developer Staff Member ISPConfig Developer

    We might change that and change add missing values to the default wizard template aswell (e.g. the dnssec value). Depending on what the other devs think.
    TonyG likes this.

Share This Page