Skip to content

Page permalink

Always use the following permalink when referencing this page. It will remain unchanged in future help versions.

https://docs.sophos.com/nsg/sophos-firewall/21.0/Help/en-us/webhelp/onlinehelp/index.html?contextId=CLI-set-dns

dns

DNS Time-to-live (TTL) determines how long it takes for a DNS record change to take effect. The domain's DNS record is cached until the next lookup. The firewall performs DNS lookups at the default interval rather than the TTL value in the DNS record for domains that resolve to localhost.

Change the interval at which the DNS lookups for localhost take place. For example, you can specify a lower TTL value to ensure the firewall updates its record earlier when you change the DNS record entry from localhost to another host.

Command

set dns

Syntax

set dns localhost-ttl <TTL in seconds>

Options

localhost-ttl <TTL in seconds>

Interval in seconds at which DNS lookups for domains that resolve to localhost occur.

Range: 60 to 655360 seconds

Default: 655360 seconds