20,212 questions
Can you explain how to troubleshoot firewall settings for external DNS access? slope game
DNSSEC Configuration
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 66%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWH%3C/text%3E%3C/svg%3E)
Wali Haider
0
Reputation points
I bought hosting for rizsolutions.com, my primary domain, via HosterPK. My local Linux environment hosts my subdomains, such as dev.rizsolutions.com, cloud.rizsolutions.com, and app.rizsolutions.com. Using Let's Encrypt, I have secured every web server with an SSL certificate and configured a DNS server on Windows Server 2016.
I now want to set up DNSSEC on HosterPK's cPanel and my Windows Server DNS. The main thing that worries me is if I should create the DNSSEC keys in HosterPK's cPanel and then copy them to my Windows DNS server, or if I should create the keys on my Windows server and copy them to HosterPK's cPanel? Is adding a DNSKEY item to the DNS records the proper way to configure DNSSEC, or is there another way?
Furthermore, I have observed that everything operates as intended when accessed internally, but it does not function correctly when accessed externally, such as when trying to visit web servers like portainer.dev.rizsolutions.com. To ensure a secure and compliant configuration, please provide the exact and up-to-date settings required for both systems.
Windows for business | Windows Server | User experience | Other
2 answers
Sort by: Most helpful
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 76%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKS%3C/text%3E%3C/svg%3E)
Kimberly Sullivan 0 Reputation points2024-09-26T04:26:31.2033333+00:00 -
Wali Haider 0 Reputation points
2024-09-26T06:07:09.1666667+00:00 I appreciate your reply. Could you elaborate a little more on the exact steps involved in troubleshooting the firewall configuration for external DNS access?
Which ports or important rules need to be configured or checked first?
Should I concentrate on DNS request inbound, outbound, or mixed traffic?
How can I make sure the firewall is allowing the required DNS traffic?Are there any typical misconfigurations or forgotten settings that I should be aware of that could prevent me from accessing the external DNS? Once again, I appreciate your advice.
-
Wali Haider 0 Reputation points
2024-09-26T06:12:51.1133333+00:00 I noticed something interesting — when I enable the IIS service role on my Windows Server for troubleshooting, it works, and when I go to
portainer.dev.rizsolutions.com, it brings up the IIS landing page. This leads me to believe that my issue might be related to DNSSEC, which is why I want to configure DNSSEC properly for external routing.Could you provide any advice on configuring DNSSEC for external access or confirm if this might be causing the issue?
Sign in to comment -
-
Deleted
This answer has been deleted due to a violation of our Code of Conduct. The answer was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
Comments have been turned off. Learn more