Feature #209
Check serial number consistency for DNS secondary zones
| Status: | Closed | Start: | 2022-05-09 | |
|---|---|---|---|---|
| Priority: | Normal | Due date: | ||
| Assigned to: | - | % Done: | 0% |
|
| Category: | - | |||
| Target version: | - | |||
| Votes: | 0 |
Description
The monitoring system should check the serial number consistency for secondary DNS zones, i.e. that the serial number on the customer's primary server and all BitFolk nameservers are the same.
This would be added by default like all the other DNS checks.
History
Updated by admin about 3 years ago
- Status changed from New to Feedback
This is deployed now. The info about the alert is at:
https://tools.bitfolk.com/wiki/Secondary_DNS_service#Zone_serials_match
Improvements:- Depend on SOA check of zone, so if that fails we don't bother to also send an alert for serial
- Don't recurse when querying nameservers as they are all meant to be authoritative for the zone being queried
- Try to find a way to put the nameserver name/address into the timeout message, for times when a customer's nameserver (not necessarily their BitFolk VM) is unresponsive
Updated by admin about 3 years ago
- Status changed from Feedback to Closed
All those improvements now done. Checks now aren't even done if the customer's DNS server isn't reachable or if it doesn't say it's authoritative for the zone in question.