Description

DNS is the phonebook of the internet.

Definitions

Records

NS

Nameserver records gives a hint where to find the nameserver for the subdomain. See https://serverfault.com/.

SSHFP

These records shows the fingerprint of your SSH server. Your DNS server needs to have DNSSEC enabled, otherwise this will not work.

https://unix.stackexchange.com/questions/121880/how-do-i-generate-sshfp-records

Tools

Flushing

Sometime it's nessesary to flush the DNS servers of the big companies. These are the URL's to activate.

https://developers.google.com/speed/public-dns/cache
https://1.1.1.1/purge-cache/
https://cachecheck.opendns.com/

Servers

Knot

Logging

Normally Knot is not logging anything. If you really want this, take a look at https://jpmens.net/.

Unbound

https://calomel.org/unbound_dns.html

-  ⇤ ← Revision 4 as of 2020-03-04 12:27:36 → 
  Size: 562
  Editor: Sciuro
  Comment:
+   ← Revision 6 as of 2020-03-06 19:26:45 → ⇥
  Size: 1117
  Editor: Sciuro
  Comment:
-Deletions are marked like this.
+Additions are marked like this.
 Line 1:
-#acl All:
-Line 6:
+Line 5:
-= Item 1 =
+= Description =
DNS is the phonebook of the internet.
 Line 8:
-== Subitem 1.1 ==
Text
{{{
for i in `ls`; do echo $i; done
}}}
+= Definitions =
== Records ==
=== NS ===
Nameserver records gives a hint where to find the nameserver for the subdomain. See [[https://serverfault.com/questions/606291/can-one-server-do-dns-for-a-domain-and-a-subdomain|https://serverfault.com/]].
-Line 14:
+Line 13:
-Bind and subdomains
 * [[https://serverfault.com/questions/606291/can-one-server-do-dns-for-a-domain-and-a-subdomain]]
+=== SSHFP ===
These records shows the fingerprint of your SSH server. Your DNS server needs to have DNSSEC enabled, otherwise this will not work.
-Line 17:
+Line 16:
-Unbound
 * [[https://calomel.org/unbound_dns.html]]
+https://unix.stackexchange.com/questions/121880/how-do-i-generate-sshfp-records
-Line 20:
+Line 18:
-Knot and logging
 * [[https://jpmens.net/2017/09/11/dns-query-response-logging-with-dnstap/]]

Flush the big DNS systems
+= Tools =
== Flushing ==
Sometime it's nessesary to flush the DNS servers of the big companies. These are the URL's to activate.
-Line 27:
+Line 24:
+= Servers =
== Knot ==
=== Logging ===
Normally Knot is not logging anything. If you really want this, take a look at [[https://jpmens.net/2017/09/11/dns-query-response-logging-with-dnstap/|https://jpmens.net/]].

== Unbound ==
[[https://calomel.org/unbound_dns.html]]

Wiki

Page

User