I have some doubts about working of DNS in general - even given the fact I have theoretical base. let's consider a following output:
[user@host ~]$ dig google.com
[...]
;; ANSWER SECTION:
google.com. 102 IN A 172.217.3.174
[user@host ~]$ dig -x 172.217.3.174
[...]
;; ANSWER SECTION:
174.3.217.172.in-addr.arpa. 17514 IN PTR sea15s11-in-f14.1e100.net.
174.3.217.172.in-addr.arpa. 17514 IN PTR sea15s11-in-f174.1e100.net.
[user@host ~]$ dig -x 172.217.3.174
[...]
;; ANSWER SECTION:
174.3.217.172.in-addr.arpa. 299 IN PTR sea15s11-in-f14.1e100.net.
174.3.217.172.in-addr.arpa. 299 IN PTR sea15s11-in-f174.1e100.net.
[user@host ~]$ dig -x 172.217.3.174
[...]
;; ANSWER SECTION:
174.3.217.172.in-addr.arpa. 299 IN PTR sea15s11-in-f14.1e100.net.
174.3.217.172.in-addr.arpa. 299 IN PTR sea15s11-in-f174.1e100.net.
[user@host ~]$ dig -x 172.217.3.174
[...]
;; ANSWER SECTION:
174.3.217.172.in-addr.arpa. 298 IN PTR sea15s11-in-f14.1e100.net.
174.3.217.172.in-addr.arpa. 298 IN PTR sea15s11-in-f174.1e100.net.
[user@host ~]$ dig -x 172.217.3.174
[...]
;; ANSWER SECTION:
174.3.217.172.in-addr.arpa. 297 IN PTR sea15s11-in-f14.1e100.net.
174.3.217.172.in-addr.arpa. 297 IN PTR sea15s11-in-f174.1e100.net.
What does it mean TTL field exactly?
In the first answer it is: 17514, further 299, 298...
I know definition, it is something like: How long client should keeps answer in cache (limit queries to DNS)
However,
1. Does it relate only to application clients? After all, linux doesn't cache DNS answers so this field doesn't matter.
2. Does it relate also secondary DNS servers (in other words how long to keep information from master DNS for this specific record?)? What about Refresh SOA field in master?
3. How does it work that it is smaller and smaller? Who is responsible for that? My client (dig on RHat) or DNS server? Authorative or slave? /etc/resolv.conf?
BTW: I consider master and Authorative are the same as well as slave=secondary=non-Authorative