September 2024 - DNS | Domains | Security

DNS Tips: Securely Operating Authoritative Name Servers and Protecting Against Outages

Klaus Darilion from nic.at shares crucial tips in two core videos for securing authoritative name servers and protecting domains during outages.

DNS Tips: Securely Operating Authoritative Name Servers and Protecting Against Outages-web

©Funtap | istockphoto.com

The DNS (Domain Name System) is the basis for all domain-based services, enabling the resolution of IP-addresses for critical services such as your company’s website, online shops, email communication, internal services like ERP systems, databases, and many more. Given its central role, the stability and resilience of your DNS infrastructure is absolutely crucial. As such, properly positioning your DNS servers and implementing robust security measures are essential steps to safeguarding your DNS infrastructure.

Luckily, as a DNS expert and Head of Operations at nic.at, I can now offer valuable insights and best practices to enhance the security and reliability of your DNS setup.

Tip #1: How to operate your authoritative name servers in a secure and reliable way

In this short video presentation, I get to explain how to operate authoritative name servers securely and reliably. Here I point out common mistakes that are often made in companies that potentially can cause the entire company to go offline. Therefore, I emphasize the importance of the servers’ availability for the functionality of company services like email and internal resources. Watch the video to learn more about where to place your name servers and get advice to ensure a 100% uptime for your online services.

 

Tip #2: How to protect your domains against outages: DNS tips

My second video focuses more on the technical aspects of operating authoritative name servers. Here, I explain how to ensure internal access to DNS zones even if external connectivity fails. My recommendation is a setup with hidden primary servers within the company network and public-facing secondary servers. Furthermore, I also highlight the importance of using stateless firewalls and give three tips for a secure DNS setup at calculable costs.

Klaus Darilion is Head of Operations at nic.at, the Austrian registry for .at domains. Additionally, he is credited as one of the technical masterminds behind RcodeZero DNS, a trustworthy DNS service for companies, Internet service providers, and TLDs.

If you are interested, RcodeZero DNS offers a 30-day trial free of charge at www.rcodezero.at.

 

Please note: The opinions expressed in Industry Insights published by dotmagazine are the author’s or interview partner’s own and do not necessarily reflect the view of the publisher, eco – Association of the Internet Industry.