? DNS Configuration and Management

Creating DNS Zone

  1. Navigate to DNS tab
  2. Click "Add new DNS Zone"
  3. Use DNS Wizard (recommended):
    • Template: Default template
    • Domain: yourdomain.com
    • IP Address: Your server IP
    • NS1: ns1.yourdomain.com
    • NS2: ns2.yourdomain.com
    • Email: admin@yourdomain.com
  4. Click "Create DNS-Record"

DNS Record Types

Type Purpose Example
A Points domain to IPv4 address example.com → 192.168.1.1
AAAA Points domain to IPv6 address example.com → 2001:db8::1
CNAME Alias for another domain www → example.com
MX Mail server for domain Priority 10: mail.example.com
TXT Text records (SPF, DKIM, etc) v=spf1 mx ~all
NS Nameserver for zone ns1.example.com
PTR Reverse DNS lookup 1.1.168.192.in-addr.arpa
SRV Service records _service._protocol.name
CAA Certificate Authority Authorization 0 issue "letsencrypt.org"

Adding DNS Records

  1. Go to DNS → DNS Zones
  2. Click on zone name
  3. Click "Records" tab
  4. Add new record:
    • Hostname: Subdomain or @ for root
    • Type: Select record type
    • Data: IP address or value
    • TTL: Time to live (3600 default)
  5. Save record

Email DNS Records

MX Records

Priority 10: mail.yourdomain.com

SPF Record (TXT)

v=spf1 mx a ip4:YOUR_SERVER_IP ~all

DKIM Record (TXT)

default._domainkey IN TXT "v=DKIM1; k=rsa; p=YOUR_PUBLIC_KEY"

DMARC Record (TXT)

_dmarc IN TXT "v=DMARC1; p=quarantine; rua=mailto:admin@yourdomain.com"

DNS Templates

ISPConfig includes DNS templates for quick setup:

  • Default template: Standard DNS records
  • Google Apps: MX records for Google Workspace
  • Office 365: MX records for Microsoft 365
  • Custom templates: Create your own

Secondary DNS (Slave Zones)

  1. Add secondary DNS server in System → Server Services
  2. Create zone on master server
  3. Enable "Allow zone transfers" to secondary server IP
  4. Secondary server automatically syncs zone

DNS Propagation

DNS changes take time to propagate:

  • TTL determines cache duration
  • Typical propagation: 4-48 hours
  • Lower TTL before making changes
  • Test with: dig, nslookup, or online tools

DNSSEC Setup

  1. Enable DNSSEC in DNS zone settings
  2. ISPConfig generates DNSSEC keys
  3. Add DS records at domain registrar
  4. Verify DNSSEC validation

Common DNS Issues

  • NXDOMAIN: Domain doesn't exist - check zone creation
  • SERVFAIL: DNS server error - check BIND logs
  • Timeout: Server not responding - check firewall port 53
  • Wrong IP: Cached old records - wait for TTL expiry

DNS Testing Commands

# Check A record
dig yourdomain.com

# Check specific record type
dig MX yourdomain.com

# Check using specific nameserver
dig @8.8.8.8 yourdomain.com

# Trace DNS resolution
dig +trace yourdomain.com

# Reverse DNS lookup
dig -x IP_ADDRESS
Cette réponse était-elle pertinente? 0 Utilisateurs l'ont trouvée utile (0 Votes)

Les plus consultés

Getting Started with ISPConfig 3.2

? Getting Started with ISPConfig 3.2 Welcome to ISPConfig 3.2, a powerful open-source hosting...
Website Management in ISPConfig 3.2

? Website Management Creating a New Website Navigate to Sites tabClick on "Sites" in the...
Email Management in ISPConfig 3.2

✉️ Email Configuration and Management Creating Email Domain Navigate to Email tab Add new...
FTP Account Management in ISPConfig

? FTP Configuration and Management Creating FTP Accounts Navigate to Sites → FTP-Accounts...
Database Management in ISPConfig

?️ MySQL/MariaDB Database Management Creating a Database Navigate to Sites → Databases...