Use WHM as nameserver, risk and possible issue

Luca Sartori

Member
Sep 3, 2015
5
1
3
Udine
cPanel Access Level
Root Administrator
Hi, I managed a server with WHM and Cpanel with some domain on a shared ip.
I always have used an exeternal nameserver resolution service (namely afraid.org) to manage nameserver resolution, now I'm interested to use WHM and BIND to simplify my managing tasks.

What are the principale risks of using my webserver and mailserver as a nameserver? Do I need another nameserver to have at least 2 nameserver to set in my registar (I assume I can use the DNS ONLY version of WHM as secondary DNS)?

What can I do to secure my server against DDOS DNS attack or DNS Poisoning?

Thanks to everyone so kind to clear my doubts
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,909
2,216
463
Hello Luca,

The risk of running the name server locally is generally with redundancy as opposed to security or performance (unless you have several thousand or more domain names). You can browse to "WHM >> Nameserver Selection" to see the pros and cons of each name server offered with cPanel & WHM. You can setup multiple name server records (NS1 and NS2) at the domain registrar with the same IP address, or if you prefer to use a DNS cluster, you can install DNS-Only on one or more servers and follow the guidelines on the document below:

Guide to DNS Cluster Configurations - cPanel Knowledge Base - cPanel Documentation

Let us know if you have any additional questions.

Thank you.
 

Luca Sartori

Member
Sep 3, 2015
5
1
3
Udine
cPanel Access Level
Root Administrator
Hello Luca,

The risk of running the name server locally is generally with redundancy as opposed to security or performance (unless you have several thousand or more domain names). You can browse to "WHM >> Nameserver Selection" to see the pros and cons of each name server offered with cPanel & WHM. You can setup multiple name server records (NS1 and NS2) at the domain registrar with the same IP address, or if you prefer to use a DNS cluster, you can install DNS-Only on one or more servers and follow the guidelines on the document below:

Guide to DNS Cluster Configurations - cPanel Knowledge Base - cPanel Documentation

Let us know if you have any additional questions.

Thank you.
Thanks for the useful info.
I started to read the documentation about the DNS clustering (and followed the lesson on cpanel University), butwhen I tried to authenticate the DNSONLY server on my server (let it be Server A) I see the autentication page declaring that what I am doing is deprecated
(I am adding the DNSONLY server using Clusters->DNS Cluster (Enable DNS Cluster->Configure) on Server A)
Is there any new method to create a Cluster?

Thanks again
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,909
2,216
463
I'm glad to see it's now working well. Thank you for updating us with the outcome.