The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

DNS Cluster with DNS ONLY

Discussion in 'Bind / DNS / Nameserver Issues' started by movielad, Oct 7, 2013.

  1. movielad

    movielad Well-Known Member
    PartnerNOC

    Joined:
    May 14, 2003
    Messages:
    107
    Likes Received:
    2
    Trophy Points:
    18
    cPanel Access Level:
    DataCenter Provider
    Hello,

    I'd like some clarification on how direct-link DNS clustering works, please.

    I'm testing a direct link-based DNS cluster strategy.

    I have three servers (all running WHM 11.38.2). One called cp, one called ns1 and the other called ns2. cp is running a full (VPS) copy of cPanel/WHM, ns1 and ns2 are running DNS ONLY. So new accounts on cp will use ns1 and ns2 for primary and secondary nameserving.

    I have configured on cp a cluster that connects ns1 and ns2 as write-only. I have set the Setup Reverse Trust Relationship during the cluster set-up, yet on ns1 and ns2 shows 403 Forbidden errors despite whitelisting all servers within the appropriate firewall/IDS systems.

    By way of getting around this, I've edited the relationship on ns1 and ns2 back to cp as standalone server, and no errors are being shown.

    Is this the proper way of handling this?

    Many thanks,

    Martyn
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    648
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    The "403 Forbidden" errors are typically resolved by entering the correct remote access hash, and ensuring there are no firewall or cPhulk brute force rules that are restricting the connection. However, "Standalone" is the preferred DNS role configured on the DNS-Only servers, so there should be no issues with the DNS configuration or synchronization of zones.

    Thank you.
     
Loading...

Share This Page