Maniphest T1217

Host our DNS servers
Open, NormalPublic
Actions

Assigned To

None

Authored By

	dereckson
	Jun 12 2017, 21:13

Tags

Referenced Files

None

Subscribers

Description

Datacenter repartition

Primary DNS server in Europe
Secondary DNS server in North America

Software

djbdns doesn't support DNSSEC
HE provides us with bind configuration files, so if we use bind, it's straightforward to migrate
Knot is a new DNS server from CZ.NIC with DNSSEC support and same format

Configuration

We need our DNS stored in rOPS (or a similar repo)

Related Objects
Search...

		Status	Subtype	Assigned	Task
		Open		None	T1217 Host our DNS servers
		Open		None	T1218 Provision primary DNS server
		Resolved		dereckson	T1215 Provision a new hypervisor
		Resolved		dereckson	T1216 Purchase a new dedicated server for an hypervisor
		Resolved		dereckson	T1265 Provision equatower, new Docker engine as a containerized OS
		Wontfix		dereckson	T1266 Upgrade Mastodon to last 1.x version on Equatower
		Resolved		dereckson	T1280 Install a SSL certificate
		Open		None	T2105 Use HE as secondary DNS server
		Open		None	T1219 Provision secondary DNS server
		Resolved		dereckson	T1220 Apply roles to servers
		Open		None	T1223 Configure NTP in rOPS
		Open		None	T761 Automate to create subdomains DNS records

Event Timeline

dereckson created this task.Jun 12 2017, 21:13

dereckson created subtask T1218: Provision primary DNS server.

dereckson created subtask T1219: Provision secondary DNS server.Jun 12 2017, 21:16

dereckson mentioned this in T761: Automate to create subdomains DNS records.Oct 15 2017, 12:27

dereckson removed dereckson as the assignee of this task.Mar 8 2018, 21:07

dereckson mentioned this in T1580: Deploy ACME-specific DNS server.Feb 4 2020, 15:02

dereckson added a subtask: T761: Automate to create subdomains DNS records.Mar 24 2023, 01:09

Knot uses also the same format, last dump for nasqueron.org available at P369.

HE can act as secondary server.

dereckson updated the task description. (Show Details)Thu, Mar 27, 18:26

dereckson added a subtask: T2105: Use HE as secondary DNS server.