Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1123
Views
5
Helpful
3
Replies

PAC file hosting

essam1982
Level 1
Level 1

‎06-02-2013 01:29 PM

Hi experts,

how efficient is using DNS A record with multiple IP addresses (DNS round robin) for hosting PAC files?

I understand that the user machine will cache the DNS, however will it cache all IP addresses returned and try them one by one till one responds, or will it just try the last IP address used before?

I am considering hosting the PAC file on two S370 appliances, and use common DNS name for both of them to locate the PAC file for the client machines if suitable. any better alternatives?

thank you.

Labels:
0 Helpful
3 Replies 3

essam1982
Level 1
Level 1

‎06-03-2013 12:00 AM

By the way, this is meant for PAC file hosting high availability, in case one of the hosting S370 fails the other one should serve clients seeking the PAC file.

0 Helpful

Christian Rahl
Level 1
Level 1

‎06-03-2013 06:39 AM

It is possible and has worked for many customers.  The other day I just had a customer that had 12 IP's in the round robin a record list. They have never had any issues with it. 

The one item they kept mentioning was the fact of tracking which boxes had been updated and which ones had not when they made pac file changes.

Christian Rahl

Customer Support Engineer

Cisco Web Content Security Appliance

Cisco Technical Assistance Center RTP

essam1982
Level 1
Level 1
In response to Christian Rahl

‎06-03-2013 01:02 PM

Thank you for taking time to answer my question Christian.

so I can safely assume that browsers will skip the first IP returned in the DNS query to the next one if the first did not respond to the request?

0 Helpful
Customers Also Viewed These Support Documents