From: Michał Kępień <michal@isc.org>
Date: Fri, 4 Aug 2023 09:17:54 +0000 (+0200)
Subject: Add release note for GL #4215
X-Git-Tag: v9.19.16~2^2
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=7d754c2113dd1db029868f8b77620f247b6537f2;p=thirdparty%2Fbind9.git

Add release note for GL #4215
---

diff --git a/doc/notes/notes-9.19.16.rst b/doc/notes/notes-9.19.16.rst
index b50f1100089..0b0b81bfa3a 100644
--- a/doc/notes/notes-9.19.16.rst
+++ b/doc/notes/notes-9.19.16.rst
@@ -27,6 +27,14 @@ Feature Changes
 - BIND now returns BADCOOKIE for out-of-date or otherwise bad but
   well-formed DNS server cookies. :gl:`#4194`
 
+- When a primary server for a zone responds to an SOA query, but the
+  subsequent TCP connection required to transfer the zone is refused,
+  that server is marked as temporarily unreachable. This now also
+  happens if the TCP connection attempt times out, preventing too many
+  zones from queuing up on an unreachable server and allowing the
+  refresh process to move on to the next configured primary more
+  quickly. :gl:`#4215`
+
 - The :any:`inline-signing` statement can now also be set inside
   :any:`dnssec-policy`. The built-in policies ``default`` and
   ``insecure`` enable the use of :any:`inline-signing`. If