DNSSec: Difference between revisions

From Jan's Wiki
Jump to navigation Jump to search
No edit summary
No edit summary
Line 12: Line 12:
  dig  DNSKEY conti.work
  dig  DNSKEY conti.work


Check if it worked [http://dnsviz.net/d/conti.work/analyze/] or here [http://dnssec-debugger.verisignlabs.com/conti.work]
[https://doc.powerdns.com/md/authoritative/dnssec/]
[https://doc.powerdns.com/md/authoritative/dnssec/]

Revision as of 20:09, 12 February 2015

How to setup DNSSEC with powerdns:

  • Add dnssec to pdns.conf:
gpgsql-dnssec=yes

sudo pdnssec add-zone-key conti.work zsk 1024 active rsasha256
sudo pdnssec add-zone-key conti.work ksk 2048 active rsasha256
sudo pdnssec secure-zone conti.work
sudo pdnssec rectify-zone conti.work

Upload public KSK ZSK [1] 

dig  DNSKEY conti.work

Check if it worked [2] or here [3] [4]

Retrieved from "https://wiki.jans.space//index.php?title=DNSSec&oldid=81"