Tech:DNS

From Orain Meta
Jump to navigation Jump to search

Orain uses GDNSD as the administrative-only software for its DNS servers.

Currently, Orain operates two DNS servers. The master is ns1 (tech:prod6) with a cache, ns2 (tech:prod7). DNS is managed via GitHub and is kept up to date by ansible on the servers.

As Orain depends on the DNS servers for user-facing resolution and internal resolution for Private IP PTRs, commit access is restricted. Non-controversial updates to DNS can be left to be updated solely by ansible un monitored however structural changes, behavioral changes or server-side updates which involve DNS - must be updated and watched by the deploying user. If the new changes fail and GDNSD fails - eventually once a users local cache clears, Orain will be inaccessible which does unfortunately include SSH into the servers although the IPs can be found in the config.

Retrieved from "https://meta.orain.org/wiki/Tech:DNS?oldid=13588"