replacing bind with powerdns

rscalover

• November 12, 2020 12:26

Hello, I'm very skeptical about this i mean bind has worked for me for years (if it's not broken don't mess with it) however i want to enable dnssec and cPanel only supports that with powerdns .I am wondering if the switch is *really* as simple as choosing Powerdns in the "nameserver selection" interface in whm ? also i use AXFR transfers to secondary dns servers will that be broken ??

• 

  ffeingol

  • November 12, 2020 19:20

  I can only answer the first part of your question, but the general answer is yes. PDNS is compatible with a whole bunch of 'back ends'. cPanel choose to implement it with a bind back end. So what basically happens is that bind gets shut down, PDNS gets started and it's configured to read the exact same zone files that bind was reading. All of the underlying cPanel "stuff" still thinks its using bind/wring bind zone files.

  0
• 

  cPanelAaronH

  • November 13, 2020 00:09

  Hey there, AXFR should work as well since PDNS looks at the named.conf file.

  0
• 

  rscalover

  • December 01, 2020 19:24

  Hello, So i made the switch to powerdns as i was already exspecting it is not working ..... Dec 1 21:10:37 pdns_server: Not doing AXFR of an narrow zone 'domain.tld' for nameserver ip here Dec 1 21:10:37 pdns_server: AXFR of domain 'domain.tld' denied to nameserver ip here
  Also since i enabled dnssec i can't connect to my mailserver now what ?..... go back to bind i guess since it seems not to be so simple as cpanel says it is. *edit* The command found here Operational instructions " PowerDNS Authoritative Server documentation (pdnsutil unset-nsec3 ZONE) seems to have helped but i still don't get confirmation about working AXFR transfers

  0
• 

  rscalover

  • December 02, 2020 14:07

  Hello, Glad i was stubborn and did not switch back to bind .Powerdns up and running ju]st fine now Dec 2 13:25:57 pdns_server: AXFR of domain 'domain.tld' to nameserver_ip_here finished
  But can anybody tell me the trick with the bind-domain-extended-status command it does not work i have the cpanel-pdns-4.1.14-1.cp1186.x86_64 rpm package installed.

  0
• 

  cPRex Jurassic Moderator

  • December 02, 2020 14:15

  @rscalover - can you get me more details about the command you're referring to and what issues you're seeing with it?

  0
• 

  rscalover

  • December 02, 2020 18:34

  @rscalover - can you get me more details about the command you're referring to and what issues you're seeing with it?

  
  if you look

  0
• 

  cPRex Jurassic Moderator

  • December 02, 2020 19:14

  Thanks for the clarification. I checked a version 92 server today and the RPM was 4.1, so it seems cPanel machines aren't using that version just yet: # rpm -qa | grep pdns cpanel-pdns-4.1.14-1.cp1186.x86_64
  so you won't have that command available.

  0

Please sign in to leave a comment.