notempty
notempty
notempty Dieser Artikel bezieht sich auf eine nicht mehr aktuelle Version!
notempty
Der Artikel für die neueste Version steht hier
Zu diesem Artikel gibt es bereits eine neuere Version, die sich allerdings auf eine Reseller-Preview bezieht
General settings for the name server
Last adaptation to the version: 12.2.3
New:
- EDNS can be disabled for individual servers
- The sources for DNS queries can be narrowed down
notempty
This article refers to a Resellerpreview
The general settings are made under Tab General
| Caption | Value | Description |  |
|---|---|---|---|
| DNSSEC validation in resolver: | Off | Warning: If the DNSSEC check is used in conjunction with forward zones, the domains to the zones must be validable in the global DNS. Replies to domains not registered globally will be rejected. This leads to SERVFAIL being used to answer queries about this domain.
When this function is activated, all DNS entries are resolved with DNSSEC without exception. This would also attempt a validation in the DNS hierarchy for only local addresses. However, due to the lack of uniqueness of the local address, it cannot be registered with higher-level DNS servers. An error message appears, the address is not resolved and the zone is therefore not accessible (using DNS). | |
| Allow DNS queries only from routed and VPN networks: | On Default |
By default, only DNS queries from the following sources are answered:
| |
| Off | If DNS queries are to be answered from other external networks as well, this option must be disabled | ||
| Disable EDNS for the following servers: | EDNS can be disabled for servers that do not comply with RFC 6891. Old or misconfigured name servers sometimes do not use or do not correctly use Extended DNS and as a result do not accept DNS queries that use these protocol extensions. The DO flag (DNSSEC OK) can no longer be placed in the standard header | ||