Windows caches DNS lookups, including failed ones that it will refuse to look up again for a period of time. This is almost never what I want, as I have the next upstream DNS source do the caching.
The relevant registry entries live under HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesDnscacheParameters
DWORDs MaxCacheEntryTtlLimit and NegativeCacheTime are the timeouts in seconds for positive and negative lookups respectively setting NegativeCacheTime to 0 disables failed lookup caching.
For an added bonus, DWORD QueryIpMatching set to 1 will reject DNS responses from servers that the resolver did not query.
8:28:31 PM
Categories: Toys
|