Back to All Scenarios
PASSEDnetwork / dns_failure
DNS Zone Transfer Failed — AXFR Rejected
The secondary DNS server cannot perform zone transfers from the primary. The secondary's zone data is 12 hours stale and SOA serial mismatch detected.
Pattern
UNKNOWN
Expected: DNS_FAILURE
Severity
MEDIUM
Confidence
68%
Remediation
Auto-Heal
Test Results
| Metric | Expected | Actual | Result |
|---|---|---|---|
| Pattern Recognition | DNS_FAILURE | UNKNOWN | |
| Severity Assessment | HIGH | MEDIUM | |
| Incident Correlation | N/A | None | |
| Cascade Escalation | N/A | No | |
| Remediation | — | Auto-Heal — Corax resolves autonomously |
Scenario Conditions
Primary DNS: BIND 9 on 10.10.0.10. Secondary: BIND 9 on 10.10.0.11. allow-transfer ACL changed on primary, excluding secondary IP. Zone data 12 hours stale.
Injected Error Messages (1)
DNS zone transfer failed — secondary dns-02 AXFR rejected by primary dns-01, allow-transfer ACL excludes 10.10.0.11, zone data 12 hours stale, SOA serial mismatch, clients may get outdated records
Neural Engine Root Cause Analysis
Unrecognized error pattern — this may be a new type of failure not yet cataloged.
Remediation Plan
Trigger autonomous healing to diagnose and fix. Manual investigation may be needed if healing cannot resolve.
Improvements Applied
- Pattern unrecognized — consider adding keywords for DNS_FAILURE
- Severity: MEDIUM (expected HIGH)
Tested: 2026-04-02Monitors: 1 | Incidents: 1Test ID: cmnhnoopv0020lig7x5397c6v