replacing bind with powerdns

[rscalover]

Hello,

I'm very skeptical about this i mean bind has worked for me for years (if it's not broken don't mess with it) however i want to enable dnssec and cPanel only supports that with powerdns .I am wondering if the switch is *really* as simple as choosing Powerdns in the "nameserver selection" interface in whm ? also i use AXFR transfers to secondary dns servers will that be broken ??

 

[ffeingol]

I can only answer the first part of your question, but the general answer is yes. PDNS is compatible with a whole bunch of 'back ends'. cPanel choose to implement it with a bind back end. So what basically happens is that bind gets shut down, PDNS gets started and it's configured to read the exact same zone files that bind was reading. All of the underlying cPanel "stuff" still thinks its using bind/wring bind zone files.

 

[cPanelAaronH]

Hey there,

AXFR should work as well since PDNS looks at the named.conf file.

Authoritative Server Settings — PowerDNS Authoritative Server documentation

doc.powerdns.com

 

[rscalover]

Hello,

So i made the switch to powerdns as i was already exspecting it is not working .....

Dec  1 21:10:37 pdns_server: Not doing AXFR of an narrow zone 'domain.tld' for nameserver ip here
Dec  1 21:10:37 pdns_server: AXFR of domain 'domain.tld' denied to nameserver ip here

Also since i enabled dnssec i can't connect to my mailserver now what ?..... go back to bind i guess since it seems not to be so simple as cpanel says it is.


*edit*

The command found here Operational instructions — PowerDNS Authoritative Server documentation (pdnsutil unset-nsec3 ZONE) seems to have helped but i still don't get confirmation about working AXFR transfers

 

[rscalover]

Hello,

Glad i was stubborn and did not switch back to bind .Powerdns up and running ju]st fine now

Dec  2 13:25:57  pdns_server: AXFR of domain 'domain.tld' to nameserver_ip_here  finished

But can anybody tell me the trick with the bind-domain-extended-status command it does not work i have the cpanel-pdns-4.1.14-1.cp1186.x86_64 rpm package installed.

 

[cPRex]

@rscalover - can you get me more details about the command you're referring to and what issues you're seeing with it?

 

[rscalover]

@rscalover - can you get me more details about the command you're referring to and what issues you're seeing with it?

if you look here it says there is a command pdns_control bind-domain-extended-status domain here but i get the command doesn't exist however the docs say that command is new in PowerDns version 4.3.0 so i might have the wrong version.

 

[cPRex]

Thanks for the clarification. I checked a version 92 server today and the RPM was 4.1, so it seems cPanel machines aren't using that version just yet:

# rpm -qa | grep pdns
cpanel-pdns-4.1.14-1.cp1186.x86_64

so you won't have that command available.