DNS: Difference between revisions

From CSCWiki
Jump to navigation Jump to search
(Update University DNS; Add AnyCast DNS IPs)
No edit summary
Line 17: Line 17:
== CSC DNS ==
== CSC DNS ==


CSC hosts some authoritative dns services on 129.97.134.4/2620:101:f000:4901:c5c::4 and 129.97.18.20/2620:101:f000:7300:c5c::20.
DNS service was terminated because it didn't work well (some problem with additional work needing to be done for some nameservers to accept delegating authority to us), nobody used it and it caused a potential security problem (which could have been fixed, but removing it was easier for the preceding reasons).


Current authoritative domains:
See an [http://wiki.csclub.uwaterloo.ca/index.php?title=DNS&oldid=2852 old revision] of this article for more detail.

* csclub.cloud
* uwaterloo.club
* csclub.uwaterloo.ca: A script (/opt/bindify/update-dns on dns1) runs every 10 minutes to populate this zone from the Infoblox records.
* Any zone added to Designate DNS service on CSC Cloud



Those DNS servers are also recursive for machines located on the University network.


== Miscellaneous ==
== Miscellaneous ==

Revision as of 19:53, 31 March 2018

IST DNS

The University of Waterloo's DNS is managed through Infoblox.

People who have access to Infoblox:

  • ztseguin
  • jxpryde

Our machines use the IST AnyCast DNS Service:

  • 129.97.2.1
  • 129.97.2.2

IST does not provide an IPv6 DNS AnyCast service at this time.

CSC DNS

CSC hosts some authoritative dns services on 129.97.134.4/2620:101:f000:4901:c5c::4 and 129.97.18.20/2620:101:f000:7300:c5c::20.

Current authoritative domains:

  • csclub.cloud
  • uwaterloo.club
  • csclub.uwaterloo.ca: A script (/opt/bindify/update-dns on dns1) runs every 10 minutes to populate this zone from the Infoblox records.
  • Any zone added to Designate DNS service on CSC Cloud


Those DNS servers are also recursive for machines located on the University network.

Miscellaneous

LOC Records

If we really cared, we might add a LOC record for csclub.uwaterloo.ca.

SSHFP

We could look into SSHFP records. Apparently OpenSSH supports these. (Discussion moved to Talk:DNS.)