Domain DNS.

just_grass · 18 Jun 2006 at 22:24

Ive been with freedns for ages, but realised i have no backup dns service.

I also had no backup mx service either for my e-mails, not been a worry until recently when our connections been very dodgy.

So i signed up with rollernet.us for their backup e-mail, (didn't use their backup dns as it pulled up even more errors to do with it being a .US service or something).

and signed up with zoneedit.com for their backup dns.

I think ive got it all working, but my registrar(1and1) doesnt allow more than 4 nameservers in use (so i can only use 2 of the 4 freedns ns's) and 2 of the backup ns's....

My question is, is there anything wrong with this dnsreport?

Here...

something about stealth nameservers? - Anyone explain this?

Any help appreciated

Alex

Beansprout · 18 Jun 2006 at 23:44

Glue at parent nameservers is fine. Stealth nameservers / Stealth NS record leakage is odd - it appears your DNS zones are listing ns3.afraid.org and ns4.afraid.org as nameservers, yet you're not using them:

ns5.nic.uk [213.246.167.131] ns1.afraid.org. ns12.zoneedit.com. ns14.zoneedit.com. ns2.afraid.org.

I think this is because you've been fiddling in which case you need to check the zones with each provider.

NS agreement on SOA Serial # - this is incremented on every change, ie it's a version number. They should be identical, ie, all nameservers are using the same version of the zone file, ie they all agree. Double-check your DNS zones.

The SOA warns can be ignored but you can change them to make DNSreport happy if you want. Lowering the TTL is never bad; it governs how quickly zone updates will be realised. I have it set mega-low on Twobeds.com (mainly for testing) and a few other domains. Stick within their values, though.

Duplicate MX records - ix that - remove the duplicate. If they both point to the same IP then they both point to the same server, meaning they're both rendered useless when that server goes down

So no huge problems, but some things that should be fixed methinks.

just_grass · 19 Jun 2006 at 08:14

okay so i ignore the glue.

The 'leakage' or whatever that is, i've read a little and think that my main dns server (ns1.afraid.org) is telling parent nameservers that ns3 and ns4 also hold my dns info but they are not added at registrar level? - would this be ok or is this a problem?

What zones do i check with which provider?

Do i need the "allow AXFR" ticked with freedns, for zoneedit to create a backup? (it is currently but wasn't when i first set it up (so it took revision 16) - i thnk it should be but it hasn't updated revisions overnight now.

I can't alter any SOA info as that is preset with freedns and only the ttl is available to be altered (which is okay with dnsreport).

And the duplicate mx, thats not normally like that, each 1and1 host is a round robin, and that problems never come up before...

Thanks very much for your help!
Alex

Beansprout · 19 Jun 2006 at 09:16

Allow AXFR sounds good to me

As for the MX, I thought that might be the case - just checking, though

just_grass · 19 Jun 2006 at 09:21

I've now unticked the allow axfr, and theyve re-synced!! weird...

oh well... best leave it be....

Also the MX problem has sorted itself...

The Stealth servers.. is this anything to worry about?

Thanks again,
Alex

Beansprout · 19 Jun 2006 at 09:23

Since you're not using them (ie 1+1 only allow 4, so I presume ns3/ns4 are what you removed to make way for the new ones), then I'd remove them from all your DNS zones. Get rid of them - don't need them

just_grass · 19 Jun 2006 at 09:29

theyre not in my dns zones....

does that mean freedns are hiding them? - I can't see them at all.

Alex

Beansprout · 19 Jun 2006 at 10:13

Weird...it might be using cached info in which case I wouldn't worry about it

just_grass · 19 Jun 2006 at 10:17

okie will keep a check on them every so often, and if it doesn't clear up will post here in a week or so...

Thanks your your help

Alex