I am a little confused as to the concepts of TTL and propagation times and I'd like to clarify some things that I did not manage to find specific answers for in the web.
AFAIK, TTL (time-to-live) represents the (top) time needed for servers around the world to update their cached value for a specific DNS.
So...
If I change a DNS record, does this change happen immediately, taking TTL time to update around the world? Or is it only after TTL time has passed that these changes will update and then start to propagate through the world?
Each server will periodically check the DNS in intervals of TTL, right? So, if a server checks a DNS record with a TTL of 14400 and I change it immediately afterwards, the server will next update its cache after a little less than 14400. If I happen to change it just prior to its check, it will update almost immediately.
Do TTL values for a DNS record (e.g., MX) depend on other TTL values or update times of, say, more general elements that override/extend its actual time-to-live (e.g., SOA refresh time)? In other words, if I only care on updating MX records and I need to do it every 4 hours, do I need to set anything else except the TTL for those MX records?
Is TTL the (theoretical) limit that a specific DNS record will update around the world? Although the actual update times are greatly varied, as I understand due to servers keeping their own cache times.
For example, I will query my company's local DNS server for one hostname from my personal domain. My domain's authoritative name server is at AWS, and the record ata3ias.test.bajic.nl is configured with TTL 120 and IP address 127.0.0.5:
First I will query the authoritative AWS name server:
I will then change the IP address to 127.0.0.6 and query again:
Next, I will query my company's internal DNS server (I can safely assume that no one before tried to resolved this address and there is no entry in DNS server's cache):
Notice the TTL, and also notice the Query time: The caching server queried the authoritative DNS server, got the response with TTL and remembered that info.
Now, if I do it again:
This answer is served from cache, you can see that by TTL (so not only the caching server will keep the data in cache for TTL time, it will also pass the information about remaining TTL to clients), and also you can see that it it took 0ms to reseolve the query (because there was no need to contact authoritative name server).
I will then go to AWS console to edit IP address once again and change it to 127.0.0.7. To confirm the change, I will again query the authoritative server directly:
Now I will query internal DNS server again:
It is still serving old data, and will do so for another 63 seconds. After a minute:
And finally, few seconds later, internal DNS server will serve fresh information: