Slashdot Mirror
Best DNS Service With API Access?
netaustin writes "My company runs quite a few media websites, mostly on Drupal, and about half on ec2. We have a good server setup with ec2 which allows us to route requests through Pound, a cluster of Varnish servers, then a cluster of Apache servers. We manage 50 domains (one per state) like this. Problem is, anytime things change, we have to manually adjust DNS for all 50 states, which is very boring and usually causes negative side effects too as we can't ever adjust all 50 DNS entries at once. We'd like to just change DNS providers and be done with it, but there are a lot of options, and I don't often shop for DNS services. I use EveryDNS for my personal domains, but I don't think they provide an API and it'd feel a little dishonest to reverse engineer the forms on their site since they're an esteemed donations-based service. I wouldn't feel bad about doing that to DNSPark, but they have a CAPTCHA image accompanying their login form, so goodbye DNSPark. I found a couple services that seem to do what I'm looking for, but they both feel a bit Microsoft-y and since I only want to change once, I want to get this right. Advice?"
Why not run your own??
How about running your own master DNS server, and having your provider slave from that.
Are all your domains hosted on the same set of servers? Could you CNAME the 50 domains to a smaller subset of domain names, and then you only have to change the A records of that subset whenever you have a change?
I second this idea.
I'd also point out that you can ease your DNS transitions by carefully planning a "drawdown" of the TTL values of your records prior to the actual change and/or setting up HTTP redirection on the legacy addresses, redirecting to the new location, during the interval of time in which the new DNS information is still replicating and/or resident in DNS caches.
Are you looking for features in a registrar or dns provider? While most registrars also provide DNS service, there's never a requirement that you have to use them. And use them I don't.
I got good and comfortable with Bind many years ago, and have the DNS administration stuff down pat. I have some really nice administration scripts that manage changes by service. Throw in a few variables, some regex, and some DNS boilerplate definition files, and I get the ability to re-ip a service (EG: websites, email, https, dbserver, etc. ad nauseum) for hundreds of domains in 60 seconds flat if you include updating the actual DNS servers with the changes. (I publish 2, I maintain 5 so that I can quickly switch nameservers in case of hardware/network failure)
Other than that, I have all my domains linked to two DNS servers by name, and occasionally I have to move a DNS server. It takes a few minutes.
Is this what you are looking for?
I have no problem with your religion until you decide it's reason to deprive others of the truth.
You sound like you've had a long drive home. How about posting in the relevant forum next time, m'kay?
I dunno ... it was a pretty damn good rant.
The higher the technology, the sharper that two-edged sword.
...or do it yourself. Easy, you're the boss, and you only pay for the hardware and net service. I would never buy DNS from anyone.
Pay a nominal fee to have an ISP slave their big bad never-down DNS servers against your hidden master. Make sure it is set up to allow DDNS updates from your master so there is no lag making the new data public. All you have to worry about is TTL.
Your server server will not take the load and will not have the uptime requirement as the public servers. You can put just about any DNS software on your server so you can use any API you want there.
You should have gotten your own domain, not the host sitting on their domain, and used the CustomDNS service. I have an account that has been inactive for over a year and it is still there. CustomDNS domains will never expire if you have been with them since the begining when they were free; all those domains were grandfathered and remain free of charge.
Totally unimpressed, I would never, ever touch them for things I cared about again.
With the free DynamicDNS service, you get what you pay for. If the infrastructure is that important to you, pay for the account.
Slashdot - The great and glorious cluster fuck of Internet wisdom.
You depended on a free service that had limitations for a critical function of your web and email. I am not sure why you decided to use the DynamicDNS service instead of CustomDNS unless you did not want to pay for your own domain. I can understand not wanting to spend any money but you got exactly what the service offers. DynamicDNS has always had the 30 day rule. That is what the word dynamic means. An update client could have been used; the IP address does not have to change but the record needs to be refreshed. You needed to upgrade to the premium level in order to remove the auto expire, and the upgrade was a onetime fee many years ago. Did you not read the account details before signing up?
The old ml.org asked for donations, which did not work out too well. The premium level is how DynDNS was going to make some cash in the begining because it actually costs money to host servers.
Slashdot - The great and glorious cluster fuck of Internet wisdom.
I'm sorry but you clearly read and understood the limitations, and then proceeded to completely ignore them in design. This was completely your fault, and blaming the company for it just proves how incompetent/irresponsible you are. I hope I never have the misfortune of any of my systems depending on you.
a handful of selfish greedy people are no match for millions of selfish, greedy people -u4ya