The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

SOLVED change default DNSSEC setting

Discussion in 'Bind / DNS / Nameserver Issues' started by desper@d0, Dec 19, 2016.

Tags:
  1. desper@d0

    desper@d0 Registered

    Joined:
    May 19, 2006
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    151
    good day

    where are located the settings to change the parameters at inclusion in DNSSEC user panel zone editor.
    parameters set by default:
    'use_nsec3' 1,
    'nsec3_opt_out' 0,
    'nsec3_iterations' 7,
    'nsec3_narrow' 1,
    I need to change the parameter
    'nsec3_narrow' 0
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    36,958
    Likes Received:
    1,274
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
  3. desper@d0

    desper@d0 Registered

    Joined:
    May 19, 2006
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    151
    Ok
    i have two files
    template
    /usr/local/cpanel/base/frontend/paper_lantern/zoneedit/dnssec.html.tt
    script
    /usr/local/cpanel/Cpanel/API/DNSSEC.pm

    how to set the parameters in the file that they template file to be transferred to the script

    What will happen to the changes that I made to the file after updating the control panel?
     
  4. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    36,958
    Likes Received:
    1,274
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Could you elaborate on the purpose of these changes? Any changes to these files are overwritten during cPanel updates. It's likely better to utilize a hook that automatically runs after a specific action:

    Guide to Standardized Hooks - Software Development Kit - cPanel Documentation

    Thank you.
     
  5. desper@d0

    desper@d0 Registered

    Joined:
    May 19, 2006
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    151
    AXFR doesn't work with NSEC3 narrow.
     
  6. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    36,958
    Likes Received:
    1,274
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello @desper@d0,

    I encourage you to open a feature request for the ability to modify the default DNSSEC settings configured on accounts:

    Submit A Feature Request

    In the meantime, you could develop a script that manually makes the changes to the zone, and then setup a hook that automatically runs in the post stage of the "DNSSEC::enable_dnssec" UAPI function:

    UAPI Functions - DNSSEC::enable_dnssec - Software Development Kit - cPanel Documentation
    Guide to Standardized Hooks - Software Development Kit - cPanel Documentation

    Let us know if you have any questions.

    Thanks!
     
Loading...

Share This Page