Configuring DNS Cluster with DNSOnly Server

ImperialTrader

Well-Known Member
Aug 31, 2014
174
20
68
Egypt
cPanel Access Level
Root Administrator
It's my first time to configure a DNS Cluster with DNSOnly server, so I need someone to review the steps I did and correct it to me please..
I have 2 servers and 1 DNSOnly server
My DNSOnly server is: dns.mydomain.com
My 1st server is: s1.mydomain.com
My 2nd server is: s2.mydomain.com
I need all my customers were hosted on the 2 servers uses common nameservers which are (ns1.mydomain.com & ns2.mydomain.com)

1. I set a DNS of (ns1.mydomain.co & ns2.mydomain.com) to point to (DNSOnly server) IP
2. In (DNSOnly server): WHM > DNS Cluster page. I added the 2 servers with (Setup Reverse Trust Relationship, Synchronize Zones Immediately & DNS Role: Synchronize Changes)

Now I see all the DNS records for all the websites hosted in (server1 + server2) appears at both servers. For example if (server1) hosted 100 websites and (server2) hosted 100 websites, I see the DNS records for the 200 websites appears at each one (server1 & server2).

Is that correct or there is something wrong or missing?
 

cPanelLauren

Product Owner
Staff member
Nov 14, 2017
13,296
1,271
313
Houston
This will work but isn't the optimal configuration. Optimally, you should technically only be synchronizing DNS records to DNS only servers and not to other webservers. What it looks like has been done here is you synchronized back and forth on all servers so all servers are sharing the DNS zone files between each other which could cause conflicts.

The recommended way to configure this is to set up s1 and s2 to write-only to the DNS server and the DNS server set to Standalone.

The guide to DNS Cluster Configurations is really helpful for identifying the cluster configuration that will work for your needs.
 

ImperialTrader

Well-Known Member
Aug 31, 2014
174
20
68
Egypt
cPanel Access Level
Root Administrator
This will work but isn't the optimal configuration. Optimally, you should technically only be synchronizing DNS records to DNS only servers and not to other webservers. What it looks like has been done here is you synchronized back and forth on all servers so all servers are sharing the DNS zone files between each other which could cause conflicts.

The recommended way to configure this is to set up s1 and s2 to write-only to the DNS server and the DNS server set to Standalone.

The guide to DNS Cluster Configurations is really helpful for identifying the cluster configuration that will work for your needs.
Perfect, that's what I really need to do :)

Shal I (Setup Reverse Trust Relationship) for each server of the three?

First, In the DNSOnly server, I added s1 server as Standalone
Then, In s1 server, I added DNSOnly server as Write-Only
After that, In the DNSOnly server, I found an error and asking me to update s1 server to support DNSSEC (Note: s1 server is updated to the latest cPanel version)
Check the attached screenshot.
 

Attachments