DNS Security scaling?

Reply
Highlighted
L0 Member

DNS Security scaling?

Hello,

 

We're looking at replacing some Fortinet and Juniper devices with PA's but can't find any details as to how many entries can be cached with the "DNS Security" feature.

 

I have a lab 220 I'm using but the output of the commands don't seem to show how many entries the cache can hold.

debug dataplane show dns-cache statistics 

Aggregated DNS cache stats:
DNS cache mem total:               16773704  
DNS cache mem used:                393216    
Size of per DNS data:              24        
Num of shards:                     8         
total number of domains:           0         
percent of memory used :           2         
Aggregated DNS cache shard stats:
Size of shard 0    |3696      allocate 13        free 7         number of domains|  0         
Size of shard 1    |3696      allocate 13        free 7         number of domains|  0         
Size of shard 2    |3696      allocate 13        free 7         number of domains|  0         
Size of shard 3    |3696      allocate 13        free 7         number of domains|  0         
Size of shard 4    |3696      allocate 13        free 7         number of domains|  0         
Size of shard 5    |3696      allocate 13        free 7         number of domains|  0         
Size of shard 6    |3696      allocate 13        free 7         number of domains|  0         
Size of shard 7    |3696      allocate 13        free 7         number of domains|  0 

Also, do entries just disappear once their TTL has expired?


If anyone does have information, that would be awesome! Both for the 220's and 5260's if possible.

 

Thank you!

Tags (1)
Highlighted
L4 Transporter

Re: DNS Security scaling?

would like to know this as well

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!