Last Modified: Nov 07, 2023
Opened: Jun 21, 2023 Severity: 4-Minor
DNS response is not signed for DNSSEC zone for DNSSEC request.
DNS response is not signed.
1. A DNSSEC zone exists. 2. Return Code on Failure is enabled and SOA Negative Caching TTL is set to 0. 3. A query hits that wideIP and does not get a pool member selected.
SOA Negative Caching TTL set to a number larger than 0.