b316f93b41996e2ace67ed62f354e0b794ff9bd3
Services-DNS.md
| ... | ... | @@ -17,33 +17,10 @@ To do this, just use `172.22.0.53` as your resolver, for instance in `/etc/resol |
| 17 | 17 | |
| 18 | 18 | If you run your own resolver (`unbound`, `dnsmasq`, `bind`), you can configure it to forward dn42 queries to the anycast DNS resolver. See [[DNS forwarder configuration|Services DNS Configuration]]. |
| 19 | 19 | |
| 20 | -## Anycast DNS |
|
| 20 | +## Register a dn42 domain name |
|
| 21 | 21 | |
| 22 | -Provides a resolver for, but not only, the dn42 zones(.dn42 currently) on a dns-server close to you. |
|
| 22 | +The root zone for `dn42.` is built from the [[whois registry|Services Whois]]. If you want to register a domain name, you need to add it to the registry (of course, you also need one or two authoritative nameservers). |
|
| 23 | 23 | |
| 24 | -The nameservers in that cloud will happily accept any request and will try to resolve it, but please be aware, that by hitting those servers with queries for e.g. google.com they could fake those result and point you towards the russian mafia. They probably won't, but think about what you are doing. - At the end of the day, your ISP could be evil as well, so it always boils down to a question of trust. |
|
| 24 | +## Provide DNS service |
|
| 25 | 25 | |
| 26 | -Configuration requirements for all members of the anycast group are: |
|
| 27 | - * maintain your own zones based on whois database (scripts included in repository) |
|
| 28 | - * allow recursion (including ".") |
|
| 29 | - * listen on a unicast IP too for testing/debugging reasons |
|
| 30 | - * with bind, please use ```minimal-responses yes;``` (goes into ```options```/```view```) |
|
| 31 | - |
|
| 32 | -It is _really_ good to hang around in [[IRC|Services IRC]] to get things sorted out, if something doesn't work. Letting some people test you DNS' behavior before joining the anycast-group is considered best practice - better safe than sorry. |
|
| 33 | - |
|
| 34 | - * **IP:** 172.22.0.53 |
|
| 35 | - * **Announciation Subnet:** 172.22.0.53/32 |
|
| 36 | - |
|
| 37 | -| **person** | **AS** | **unicast-name** | **unicast address** | **comments** | |
|
| 38 | -|----|:-------:|:-------:|:-------:|----------------------------------------------------| |
|
| 39 | -| nihilus | 64692 | dnscache.zeus.dn42.nowhere.ws | 172.22.92.123 | | |
|
| 40 | -| wintix | 64822 | ns1.wintix.dn42 | 172.22.222.1 | | |
|
| 41 | -| wintix | 64823 | ns2.wintix.dn42 | 172.22.223.1 | | |
|
| 42 | -| somerandomnick | 64731 | - | 172.22.131.38 | down pending rDNS debate | |
|
| 43 | -| crest | 64828 | ns3.crest.dn42 | 172.22.228.84 | authorative only | |
|
| 44 | -| crest | 64828 | ns2.crest.dn42 | 172.22.228.85 | public caching resolver | |
|
| 45 | -| siska | 76103 | nixnodes.root.dn42 | 172.22.177.8 | authoritative only | |
|
| 46 | -| siska | 76103 | ns1.nixnodes.dn42 | 172.22.177.2 | caching | |
|
| 47 | -| siska | 76105 | ns2.nixnodes.dn42 | 172.22.177.1 | caching | |
|
| 48 | - |
|
| 49 | -For configuring concrete DNS caches see: [[DNS Configuration|Services DNS Configuration]] |
|
| ... | ... | \ No newline at end of file |
| 0 | +See [[Provide Anycast DNS]]. |
|
| ... | ... | \ No newline at end of file |