Question on DNS cluster configuration

unity200

• December 22, 2022 01:07

• Standalone " This method fetches DNS records from the remote server, but does not write records from the local server to the remote server.
• Synchronize " This method synchronizes records between the local server and the remote server.
• Write-only " This method pushes the local server's records to write to the remote server, but does not query records from the remote server to write to the local server

These instructions are not clear either in the documentation nor in any of the posts in this forum. Even solely for the synchronize choice: - Will the WHM servers be set to synchronize, with the DNS-only servers in the cluster being set to standalone mode? - Or do all servers need to be set to synchronize? - Do all servers in the cluster need to have each other's API keys and connect to each other back and forth in the DNS cluster? - What about the reverse trust relationship? Will all servers need to have it checked? The same applies to other choices. The setup is not clear. If there was a diagram showing the potential connections with the potential choices needed, that would make it more understandable.

• 

  cPRex Jurassic Moderator

  • December 22, 2022 15:26

  Hey there! You want the webservers to be set to synchronize and the remote nameservers set to standalone. They would need the API key and reverse trust setup. Details about the reverse trust and API, as well as the general configuration, can be found here: Guide to DNS Cluster Configurations | cPanel & WHM Documentation Let me know if that helps!

  0
• 

  unity200

  • December 22, 2022 19:50

  Hey there! You want the webservers to be set to synchronize and the remote nameservers set to standalone. They would need the API key and reverse trust setup.

  
  But which servers would need which servers' API key? All the servers? Only the webservers have to have the keys of the remote DNS onlies? And where to set the reverse trust? Do all the servers have to reverse-trust each other?

  0
• 

  cPRex Jurassic Moderator

  • December 22, 2022 19:58

  The reverse trust happens between each DNS nameserver member, which is typically a DNSOnly server, and the WHM machine. If you have multiple systems pointing to the same nameserver, there will be multiple reverse trusts and keys on the nameserver side. The reverse trust will be configured as part of the cluster setup in the DNS Cluster page.

  0
• 

  ffeingol

  • December 22, 2022 21:04

  But which servers would need which servers' API key?

  
  You need the API key from the DNS-only server to add it on the web server. We web server uses the API key to make the changes on the DNS server.

  0
• 

  unity200

  • December 22, 2022 22:59

  The reverse trust happens between each DNS nameserver member, which is typically a DNSOnly server, and the WHM machine. If you have multiple systems pointing to the same nameserver, there will be multiple reverse trusts and keys on the nameserver side. The reverse trust will be configured as part of the cluster setup in the DNS Cluster page.

  
  Ok, so I check the checkbox for the reverse-trust at the DNSonlies, not at the webservers. I had set it for the webservers with my current setup. So that was wrong.

  You need the API key from the DNS-only server to add it on the web server. We web server uses the API key to make the changes on the DNS server.

  
  Ok that one is pretty clear now.

  0

Please sign in to leave a comment.