| title | updated |
|---|---|
Tutorial - Using Zonemaster |
2024-06-18 |
Warning
OVHcloud provides services that you are responsible for with regard to their configuration and management. It is therefore your responsibility to ensure that they function properly.
This tutorial is designed to help you with common tasks. Nevertheless, we recommend contacting a specialist provider if you encounter any difficulties. We will not be able to assist you. You can find more information in the Go further section of this guide.
Zonemaster is a tool created by the collaboration between AFNIC (French registry) and The Swedish Internet Foundation (Swedish registry). It allows you to analyse the Domain Name System (DNS) configuration of a domain name and identify what can be improved or corrected.
[!primary]
To better understand the concept of DNS, please read our guide “Everything you need to know about DNS zone”.
The Zonemaster tool allows you to check a DNS configuration in place on a domain name or to test a preconfigured DNS zone on future DNS servers.
To check the current configuration of a domain name, enter your domain name, then click Run{.action}.
{.thumbnail}
To check a DNS configuration that has been prepared but not yet applied to the domain name concerned, select the Options{.action} box, and then enter the following information:
- Nameservers: Enter the information for the DNS server associated with a domain name. Click the
+{.action} button to add additional nameservers. Entering an IP address is optional. - Delegation Signers (DS records): If DNSSEC protection applies, enter the DS record items here. Click
+{.action} to add additional DS records. If the DNS servers do not use the DNSSEC protocol, you can leave these fields empty. If a zone is signed with DNSSEC, this feature allows to check that the zone works correctly with a validating resolver, with the DS records that are about to be published, before their publication.
You can also force checks on a specific IP protocol by using the Disable IPv6 and Disable IPv4 checkboxes.
Example:
You have the domain name domain.tld, which currently uses the DNS servers "dnsXX.ovh.net" and "nsXX.ovh.net".You have configured a DNS zone for this domain name on the DNS servers "dns1.test.tld" and "dns2.test.tld".
Before you change the DNS servers, you can perform an advanced search by enablingOptions{.action}, then entering "dns1.test.tld" and "dns2.test.tld" into theNameserversfields.
Zonemaster will perform a test as if you were using the servers "dns1.test.tld" and "dns2.test.tld" on domain.tld.
{.thumbnail}
[!primary]
When you enter a domain name and click on
Fetch NS from parent zone{.action} andFetch DS from parent zone{.action}, the DNS servers associated with the domain name will appear, along with the DS record information (DNSSEC) if it has been configured.{.thumbnail}
Once the form has been validated, the results are grouped by type of test. Tests are sorted by severity level:
- Error: This part contains errors or missing elements that may cause a malfunction.
- Warning: This part is functional, but deserves special attention. The tool has detected that this parameter has characteristics that do not fit within its category, without blocking its operation.
- Info: This part is functional and meets the standard criteria in its category.
- Notice: This is merely information, with no particular consequences for the functioning of the domain name.
For each test, it is possible to get more details, for instance, to understand why a test failed.
{.thumbnail}
If you have any additional questions about Zonemaster, see the FAQ on https://zonemaster.net/.
Editing the DNS servers for an OVHcloud domain name
Securing your domain name with DNSSEC
For specialised services (SEO, development, etc.), contact OVHcloud partners .
If you would like assistance using and configuring your OVHcloud solutions, please refer to our support offers.
Join our community of users.