Page MenuHomeDevCentral

Host our DNS servers
Open, NormalPublic

Description

Datacenter repartition

  • Primary DNS server in Europe
  • Secondary DNS server in North America

Software

  • djbdns doesn't support DNSSEC
  • HE provides us with bind configuration files, so if we use bind, it's straightforward to migrate
  • Knot is a new DNS server from CZ.NIC with DNSSEC support and same format

Configuration

  • We need our DNS stored in rOPS (or a similar repo)

Event Timeline

dereckson removed dereckson as the assignee of this task.Mar 8 2018, 21:07

Knot uses also the same format, last dump for nasqueron.org available at P369.

HE can act as secondary server.

To start using Knot DNS, you should complete the following tasks:

    cp /usr/local/etc/knot/knot.conf.sample /usr/local/etc/knot/knot.conf
    $EDITOR /usr/local/etc/knot/knot.conf

    sysrc knot_enable=YES
    sysrc knot_config=/usr/local/etc/knot/knot.conf
    service knot start

  Please consult the documentation:
   - man knotd
   - https://www.knot-dns.cz/documentation/

  When upgrading from 2.4.x read:
   - https://www.knot-dns.cz/docs/3.3/html/migration.html#upgrade-2-9-x-to-3-0-x