My users need access to several 3rd-party Internet sites, even when DNS fails. Some of these domains have very low DNS TTL's (<60 seconds), generally to facilitate a redundancy scheme.
Let's use Amazon for a test-case (15 second TTL). Normally, I would like to use whatever IP Amazon gives me, but when upstream DNS fails and cache expires 15 seconds latter, I cannot get to Amazon so I would like to go to a known IP for Amazon that I have previously looked-up. We forward DNS requests through an upstream hierarchy for security purposes so I have little control of that architecture or maintenance outages. I've had 2 this week.
For sites with TTL's of one day (standard), DNS caching protects against most DNS outages. I would like to be able to configure static address mappings to sites that only get used ONLY if upstream DNS fails (i.e. server failure response). I would prefer to manage this centrally on the DNS Server rather than having to use local hosts files and change the resolution order (host file AFTER DNS lookup). Overriding the TTL's would could make cache persistent long enough to weather most outages, but seems pretty complicated to me.
Here is a concise scenario:
100 Clients use my DNS Server
My W2008 DNS Server forwards Amazon requests upstream
When DNS stops successfully returning an IP for amazon.com, I want "22.214.171.124" to be used.
I don't want to maintain 100 host files and chain the resolution order on 100 hosts if there is a more centrally managed way. Obviously automation (GPO etc) could ease the process if I have to do it.