You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
In the current implementation of FQDN controller (which maintains a mapping from domain names specified in FQDN rules to IPs returned by DNS server), Antrea does not refresh the TTL for any IPs that are already present in the cache and have not expired. Furthermore, all IPs that back a FQDN are set with a single lowest applicable TTL: the time that any of the IPs for that FQDN expires. The is problematic for a couple of reasons:
The TTL for certain IPs in the DNS response might not be respected. Since all IPs are set with a lowest applicable expiration time, some records can get evicted before their original TTL if they are not present in the latest DNS query response.
Expected
In the DNS cache Antrea should keep track of the TTL of individual IPs for a FQDN. When any of these IPs expire, it should send a new DNS query, and upon receiving the latest DNS responses, only evict IPs that no longer exist in the response and has passed its original TTL.
The text was updated successfully, but these errors were encountered:
Describe the bug
In the current implementation of FQDN controller (which maintains a mapping from domain names specified in FQDN rules to IPs returned by DNS server), Antrea does not refresh the TTL for any IPs that are already present in the cache and have not expired. Furthermore, all IPs that back a FQDN are set with a single lowest applicable TTL: the time that any of the IPs for that FQDN expires. The is problematic for a couple of reasons:
Expected
In the DNS cache Antrea should keep track of the TTL of individual IPs for a FQDN. When any of these IPs expire, it should send a new DNS query, and upon receiving the latest DNS responses, only evict IPs that no longer exist in the response and has passed its original TTL.
The text was updated successfully, but these errors were encountered: