1. 23

  2. 6

    I also run my own DNS server, but I prefer to maintain just the master. I pay ~$15/yr to outsource the slaves to a third party company who specializes in such things, and I don’t have to worry as much if my VPS provider decides to go down for a few hours, etc. I get a more reliable DNS system, and I still get to maintain control, graph statistics, etc, to my heart’s content.

    Glad to see the discipline of self-hosting isn’t completely going the way of the dodo in this day and age!

    1. 2

      Any recommendation for a good third part company for such outsourcing?

      I also run my own DNS. The main reason is that I run my own mail using https://mailinabox.email/, which has been a reasonably simple and pain-free experience. Paying someone to get better stability could be interesting.

      1. 3

        I have added nameservers from BuddyNS to my secondary DNS. For the moment I’m just using their free plan since I’ve delegated to only one nameservers out of the 3 which are serving my zones, and the query count is low enough to keep me on the free plan.

        1. 1

          I loved BuddyNS but I went over their query limit and the only payment they accept is PayPal and I boycott PayPal after they stole $900 from me… I wish they would take other forms of payment

        2. 3

          I asked for some recommendations online. My biggest requirements were a ‘slave only’ offering, DNSSEC/IPv6 support, and ‘not Dyn’ (I just can’t give Oracle money these days). With all that in mind, I ended up choosing dnsmadesimple.com (edit: looks like they’re $30/yr, not $15 as above. Mea culpa) It was seriously easy to get everything set up (less than 20 minutes!) and now I don’t have to worry about what happens when my master goes down.

          1. 1

            Do you mean dnsmadeeasy.com or do you mean dnsimple.com?

            dnsmadesimple.com doesn’t exist

            1. 2

              My deepest apologies, this is what I get for Internetting when I’m about four cups of coffee short.

              dnsmadeasy.com is the correct one.

          2. 3

            Hello everyone! This is my first post. :)

            I’m Vitalie from LuaDNS. We don’t offer slaves right now (only AXFR transfers), but if you don’t mind to fiddle with git, you can add your Bind files to a git repository and push them to us via GitHub/Bitbucket/YourRepo. You can keep using your DNS servers for redundancy as slaves.

            You get backups via git and free Anycast DNS for 3 zones. :)

            Shameless Plug

          3. 1

            Interesting - that’s not a bad idea.

            If I were a corp I wouldn’t want this method, but for the single user, the investment has been well worth the pay-off - even if I decide to go with a vendor in future, I’ll understand what I’m paying for.

          4. 5

            I’m too lazy to run my own DNS. CloudFlare doesn’t provide all record types, which is irritating sometimes. But if I did run my own, I wouldn’t run BIND. And I wouldn’t run a slave. Zone transfers add complexity. DJB got it right. I’d distribute the master database from a central place, LDAP, SQL, git repo, something like that.

            1. 5

              I used to run bind on a small and cheap (~$5 USD/month) VPS. Then I got lazy and switched to Google cloud DNS. It’s simple and costs me fraction of a dollar per month.

              These things are great fun when learning the subject, but once it becomes routine, you simply lose interest (in maintaining it).

              1. 3

                you can get free dns services (including just-slave) from hurricane electric: https://dns.he.net/

                1. 3

                  Also, Cloudflare provides DNS in their free plan. Though it doesn’t cover all record types, it’s still pretty good.

                  1. 2

                    That’s very interesting (and quite rare), thanks! How did you hear about it?

                    1. 2

                      i run a he ipv6 tunnel for some years now, i guess it was recommended by a friend back then. i can only recommend the free hurricane electric services, never had any problems. they even send me a new t-shirt when my free-ipv6-certification-sage-t-shirt got lost in international mail :)

                  2. 2

                    Learning is a very good reason to do this.

                    1. 2

                      There’s no need to update dynamic DNS via a script. BIND has native dynamic DNS capabilities by means of the RFC 2136 DNS UPDATE command that uses (symmetric) crypto so you can execute it from your local connection. Back in 2015, I wrote a blog post on that approach, but it’s German.

                      On the topic of running things from home: I’m very much a friend of it for control and privacy reasons, but there’s a major bummer for me. My ISP prohibits running servers from home in his ToS; you need to upgrade to a “business account” if you want to do that, and the business account comes with a static IP address anyway, so there’s not much reason to do a complex dynamic DNS setup. As a result, I currently run my website on a simple VPS.

                      1. 2

                        I’ve been using FreeDNS - a fork of XName - for the past ~15 years.

                        1. 2

                          I used to run a few geographically distributed DNS and MX servers for my own domains. I stopped like 15 years ago. A couple of nights ago I had a nightmare that I was running my own MXes again. An actual nightmare.

                          1. 1

                            I used to run my own DNS servers in my home on Raspberry Pis. But, Google Wifi gets a little wonky with custom DNS servers (at least it used to). I will probably set something up some time in the future with pihole.