DNS Geolocation

[disgruntled]

I have been looking around for a little while but i cant seem to find anything that is cost effective.

 

I am looking to setup 4 standalone DNS servers, cpanel dns only is the option i want to use because most of my servers run with cpanel.

 

Does anybody have any idea where i can source some cheap but reliable cpanel dns only servers? from what i can gather it seems most places require a minimum server level to install even cpanel dns onto them.

[msaunders]

Hi

We did something similar a few months ago and just used provisioned 3 separate VPS in different locations and installed cpanel DNS only on them. It was not difficult to setup. If you need one in Ireland give me a shout

[disgruntled]

thank you msaunders, seeing as you have already gone down this route you seem to be the ideal person to speak with, the way i figured it, i can just set up a vps and install dns only on it, but one hosting provider states i need a minimum level of vps to have cpanel on it, i thought i didnt need the full cpanel just the cpanel dns only software.

 

Is there extra licensing to use the dns only version? i mean do i need a cpanel license for the dns vps?

[sparky]

This is all that you would need for a cheap DNS ONLY server (other locations also available)

VPS #1 (Virtual Private Server) - vePortal - (MIAMI, FL) - CPU: 1GHZ, RAM: 512MB, DISKSPACE: 20GB, BANDWIDTH: 1000GB/MONTH

$5.95 USD Monthly - $59.50 USD Annually

PM me and I'll shoot you the link

The vps's are not from me, I have one with them though for a dns only and have it clusteded with the other cpanel servers

 

DNS Only is quite easy to setup and is free (no cpanel license required)

[disgruntled]

This is all that you would need for a cheap DNS ONLY server (other locations also available)

 

PM me and I'll shoot you the link

The vps's are not from me, I have one with them though for a dns only and have it clusteded with the other cpanel servers

 

DNS Only is quite easy to setup and is free (no cpanel license required)

 

Awesome thanks, i think i know who those people are sparky. so basically the provider is trying to grab some extra money out of my by stating i need x level of vps to install the cpanel dns. il use the other folks then. thanks for the help sparky much appreciated.

[disgruntled]

Well i have gone ahead with my server setup however i seem to have hit a snag, as i am now taking my DNS from the webservers and setting these up the dedicated nameservers (i will be removing bind from all webservers) i have suddenly found that my hosting domain has been put into some sort of back order status so i cant change my name server IP's what a day today has turned out to be.

 

None the less the installation of dns only was easy enough, even if it did take a long time. (71 minutes), the second server has been ordered burst ordering uk/us is a little odd, seems they have two billing systems for this none the less the uk side was super fast, one minute after payment my new vps was online and ready to play with, the us one i ordered a little over an hour ago and still its sitting pending. i guess the usa is asleep .

 

So for anybody who has the questions i have had, you can easily setup standalone name servers and on very low budget vps (subject to vps providers terms) no extra licensing needed you just need to configure your servers to run correctly with the name servers.

 

on the webserver, configure sync to each name servers.

On the name servers (i know each one.. drag) configure each webserver as stand alone.

 

If ive done this right then my webservers will sync to the name servers but the same wont occur in reverse. im considering two more if all goes to plan to have maximum redundancy and it will still be cheaper than the 1 vps the other never to be named host wanted for their "level 3" server.

[sparky]

That link that I was going to give you was burst so your there anyway. They have been fairly reliable and the support from them has been quite quick to date considering it's a very cheap vps.

In my opinion I can't really see the point in disabling bind from your webservers.

Although its just a dns only server you still get the idiots trying to hack the server trying to send mail etc so don't forget to

1) install and configure CSF

2) install log view http://www.logview.org/

3) enable cphulk

4) change your ssh port /etc/ssh/sshd_config

 

You can also edit /etc/cpupdate.conf and change the tier from edge to current for the CPANEL var to be able to update to the latest version 11.34.0.3

[disgruntled]

Thanks sparky, i have setup now, with more and more servers running all the time it makes more sense to have dedicated nameservers rather than trying to use the webservers for the dns just makes them work harder than necessary, which i have been doing until now.

 

As far running bind on the webservers, i know it wont make a difference to the dns itself, but i think if i can free up even a fraction of ram/cpu i would rather it was going to my clients to use.

 

I have always had those suggestions setup from day one on the webservers and i cant believe i overlooked them on the nameservers. The only one i have not done is the port change, but i use cert authentication anyway i have disabled password authentication. To be quite honest with you i am a little surprised. anybody that needs ssh in my mind is an advanced user so i dont see the point in password authentication for ssh anyway i know i used it when i first started ssh though so maybe that is why its still used.

 

cert auth is by far the best way i think it just takes a little getting used to but to be fair on my windozy computer i use putty/pageant so its all simple once you import the cert into pageant, still changing the port change cant hurt, i suppose a layer of security by obscurity is better than constant attempts on the standard port.

 

I did not look to see if there was an option for password auth on the dns only panels il take a look i prefer it, but the port will be moved anyway.

 

Again thanks for the help it is much appreciated.

[sparky]

No problem... glad that I could be of assistance.

BTW with the last part that I mentioned there was a typo

You can also edit /etc/cpupdate.conf and change the tier from edge to current for the CPANEL var to be able to update to the latest version 11.34.0.3

It should have been release and not edge

You can also edit /etc/cpupdate.conf and change the tier from the default release to current for the CPANEL var to be able to update to the latest version 11.34.0.3

 

With ssh I do agree and I also have password auth disabled as well as the port changed.

Anyone that guess the port number tries to use password auth and is blocked with a permanent ip ban after 3 attempts.

 

One other thing that I have found is that nearly 75% of hack attempts come from china. Last weekend I put a country block on china and it was so peacefull for the weekend with very few hack notices. At one stage I thought that the mail server was not working and sent a few emails to myself just to give me peace of mind.

Edited October 21, 2012 by sparky

[disgruntled]

One other thing that I have found is that nearly 75% of hack attempts come from china. Last weekend I put a country block on china and it was so peacefull for the weekend with very few hack notices. At one stage I thought that the mail server was not working and sent a few emails to myself just to give me peace of mind.

 

I have an email notice for root access, its annoying when i know im logging in and get a notice of root login, but for peace of mind i prefer to have it that way. At least in that way i can get onto a breach access immediately because its sending it to an email that my phone picks up. that way no matter where i am i just need to get onto a computer. probably a little overkill seeing as i use cert auth, but none the less there is always a possibility of access in some way or another.

[jacent]

AWS EC2 would be good for this.

 

Spin up an instance in EU, APAC and Americas and you've covered the majority of the tech world.

[suhailc]

Hi,

 

If you're still looking for a one stop multiple location Cpanel DNS provider please check out http://www.dnscluster.co.uk

[WHMCS Chris]

Why spin up more VPS' when cPanel allows you through a partnership to use SoftLayer & VPS.Net as your DNS provider? You'll be able to utilize a huge network of servers as opposed to the three (and the cost for those).

[factor]

Why spin up more VPS' when cPanel allows you through a partnership to use SoftLayer & VPS.Net as your DNS provider? You'll be able to utilize a huge network of servers as opposed to the three (and the cost for those).

 

where can i find info about this?

[WHMCS Chris]

Hello,

 

Directly inside cPanel/WHM

http://cpanel.net/cpanel_expands_its_dns_cluster_functionality_with_softlayer_and_vpsnet./

http://docs.cpanel.net/twiki/bin/view/AllDocumentation/WHMDocs/ConfigureCluster#DNS%20Clustering%20with%20_SoftLayer%20a

[Bubka3]

Why spin up more VPS' when cPanel allows you through a partnership to use SoftLayer & VPS.Net as your DNS provider? You'll be able to utilize a huge network of servers as opposed to the three (and the cost for those).

Because you have to be a customer of theirs to use it.

[disgruntled]

i think its high time that cpanel license prices came down, they dominate most of the control panel market anyway, surely they can afford to lose a few zeros from their gross profits and allow us smaller resale based hosts a little play time with their licensing.

 

I think matt needs to get persuasive over at cPanel headquarters and get us all a nice deal lol