Configuring DNS Cluster with DNSOnly Server

[ImperialTrader]

It's my first time to configure a DNS Cluster with DNSOnly server, so I need someone to review the steps I did and correct it to me please..
I have 2 servers and 1 DNSOnly server
My DNSOnly server is: dns.mydomain.com
My 1st server is: s1.mydomain.com
My 2nd server is: s2.mydomain.com
I need all my customers were hosted on the 2 servers uses common nameservers which are (ns1.mydomain.com & ns2.mydomain.com)

1. I set a DNS of (ns1.mydomain.co & ns2.mydomain.com) to point to (DNSOnly server) IP
2. In (DNSOnly server): WHM > DNS Cluster page. I added the 2 servers with (Setup Reverse Trust Relationship, Synchronize Zones Immediately & DNS Role: Synchronize Changes)

Now I see all the DNS records for all the websites hosted in (server1 + server2) appears at both servers. For example if (server1) hosted 100 websites and (server2) hosted 100 websites, I see the DNS records for the 200 websites appears at each one (server1 & server2).

Is that correct or there is something wrong or missing?

 

[cPanelLauren]

This will work but isn't the optimal configuration. Optimally, you should technically only be synchronizing DNS records to DNS only servers and not to other webservers. What it looks like has been done here is you synchronized back and forth on all servers so all servers are sharing the DNS zone files between each other which could cause conflicts.

The recommended way to configure this is to set up s1 and s2 to write-only to the DNS server and the DNS server set to Standalone.

The guide to DNS Cluster Configurations is really helpful for identifying the cluster configuration that will work for your needs.

 

[ImperialTrader]

This will work but isn't the optimal configuration. Optimally, you should technically only be synchronizing DNS records to DNS only servers and not to other webservers. What it looks like has been done here is you synchronized back and forth on all servers so all servers are sharing the DNS zone files between each other which could cause conflicts.

The recommended way to configure this is to set up s1 and s2 to write-only to the DNS server and the DNS server set to Standalone.

The guide to DNS Cluster Configurations is really helpful for identifying the cluster configuration that will work for your needs.

Perfect, that's what I really need to do

Shal I (Setup Reverse Trust Relationship) for each server of the three?

First, In the DNSOnly server, I added s1 server as Standalone
Then, In s1 server, I added DNSOnly server as Write-Only
After that, In the DNSOnly server, I found an error and asking me to update s1 server to support DNSSEC (Note: s1 server is updated to the latest cPanel version)
Check the attached screenshot.

 

[cPanelLauren]

Hi @ImperialTrader

I would set up Reverse trust for all of them


What version is the DNSOnly installation?

 

[ImperialTrader]

Hi @ImperialTrader

I would set up Reverse trust for all of them

What version is the DNSOnly installation?

All servers are v84.0.19
Check the attached screenshot

 

[ImperialTrader]

Hi @ImperialTrader

I would set up Reverse trust for all of them
What version is the DNSOnly installation?

I removed and re-added it, and now it works fine
Check the attached screenshot with the final configurations for my DNSOnly server, is it correct?

 

[cPanelLauren]

Nice! That looks good!

 

[ImperialTrader]

Nice! That looks good!

Thank you