GSLB DNS response when all service IPs are down?

Posted by kirbini

How should the non-proxy DNS respond in a GSLB config when all service IPs fail their heath checks?

I have two service IPs in a GLSB zone config. Both servers show down in the service-ip status page but I still get a valid DNS response containing at least one of the external IPs when I query the load balancer. If only one is down I correctly get the IP of the up device 100% of the time. However if that device drops offline too then I still get a valid DNS response, although it is not always the IP of the server that most recently went down.

In this situation I’d expect a NXDOMAIN type response not a valid IP. Is that how it is supposed to work?

Posted by TODDH

Do you have Active-Only checked in your policy?

Thanks,

-Todd-

Posted by kirbini

I do now and it works as expected. Don’t know how I overlooked that one (yes I do, It’s late on a Friday afternoon).

Thanks for pointing it out.