This section describes how to integrate Plesk with an external Linux-based secondary (slave) DNS server. This server will copy the zone data from your primary DNS server, but cannot change that data.

可使用 Slave DNS Manager 擴展(位於 Plesk GUI 中的 擴展目錄 )執行該整合。

備註: 伺服器一次只能安裝下列中的一個擴展:Slave DNS Manager、Amazon Route 53 或 DigitalOcean DNS。所有都可以管理 DNS,如果一起安裝將會衝突。

Configure a secondary (slave) DNS server:

備註: The following instructions are intended for Debian Linux. The sequence of steps on other Linux systems is the same. However, commands, and paths to configuration files might be different.

  1. Install BIND if it is not already installed. BIND is an open-source DNS management software program. You can check if it is installed in the :doc:`Services Management <59418>` interface in the Tools & Settings > Server Management > Services Management section, where it appears as 「DNS Server (BIND)」. If BIND is not installed, you can install it with the following command:

    apt-get install bind9

  2. In the named.conf file on the secondary DNS server, add the following required information:

    • The enabled allow-new-zones option in the options directive. If this directive does not exist, you can add it.
    • A secret key.
    • The IP address of the primary DNS server and an instruction for BIND to accept connections from it.

    Your named.conf file additions will look like the following example:

    options {
    ...
allow-new-zones yes;
 };
key "rndc-key-10.69.43.240" {
algorithm hmac-sha256;
secret "YTQ2OGZiY2E4MDliMTY5OThkOGYyYw==";
};
controls {
inet * port 953 allow { 10.69.43.240; 127.0.0.1; } keys { "rndc-key-10.69.43.240"; };
};

  3. Save your named.conf changes, then restart the BIND service by issuing the following command:

    invoke-rc.d bind9 restart

  4. To make sure that you have a copy of your secret key available, add it to the /etc/bind/rndc.key file. For example:

    key "rndc-key" {
    algorithm hmac-md5;
    secret "vwOxonI4n4CVRUhKAOAAIA==";
 };

That’s it, the secondary name server is set up.

備註: 如果您的 Plesk 伺服器後置於 NAT,輔助 DNS 伺服器必須在其外面。

Configure Plesk for a secondary (slave) DNS server:

To configure Plesk to recognize your secondary DNS server, add it in the Slave DNS Manager extension.

Add the secondary server and specify its IP address and the secret key. The extension will create a configuration file with the secondary server settings for the rndc utility.

From now on, Plesk will automatically use the following commands to transfer all created, modified, and deleted zones to the secondary server:

創建

/usr/sbin/rndc -c slave.config addzone example.com '{ type slave; file "/var/lib/bind/example.com"; masters { <plesk_ip>; }; };'

修改

/usr/sbin/rndc -c slave.config refresh example.com

刪除

/usr/sbin/rndc -c slave.config delzone example.com

現在當您在 Plesk 中添加域名時,會自動在輔助伺服器和主要伺服器上創建 DNS 區域。

More information about the extension’s algorithm:

The Slave DNS Manager extension works according to the following algorithm:

  1. 會在擴展設定中註冊一個輔助伺服器。
  2. The secondary server’s IP address is automatically added to the list of addresses that are allowed to transfer domain zones from the Plesk server.
  3. 當您在 Plesk中創建、修改或刪除一個活動的域名區域時,Plesk 則會在本地DNS服務中創建、修改或刪除域名區域。
  4. 腳本會啟動域名並接收命令以創建、修改或刪除一個域名區域。
  5. The script initiates the rndc command for each connected secondary server.
  6. 輔助伺服器會將域名區域與 Plesk 伺服器上的域名區域進行同步。