this post was submitted on 30 Mar 2024
14 points (88.9% liked)

Selfhosted

60281 readers
916 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

Detailed Rules Post

  1. Be civil.

  2. No spam.

  3. Posts are to be related to self-hosting.

  4. Don't duplicate the full text of your blog or readme if you're providing a link.

  5. Submission headline should match the article title.

  6. No trolling.

  7. Promotion posts require active participation, with an account that is at least 30 days old. F/LOSS without a paywall has exceptions, with requirements. See the rules link for details.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 3 years ago
MODERATORS
 

Any suggestions for a DNS service that specifically allows subzones, also called subdomains and delegation of those subzones.

I’m currently using CloudFlare and NameCheap. It doesn’t look like NameCheap doesn’t support subzones at all, and CloudFlare only supports them at the enterprise level.

you are viewing a single comment's thread
view the rest of the comments
[–] some_guy@lemmy.sdf.org 1 points 2 years ago (1 children)

DNS points to the domain. Then you configure the subdomain on the same IP. Maybe I'm missing something, but this is how I understand subdomains.

[–] towerful@programming.dev 4 points 2 years ago

Decent DNS providers allow you to create NS records for subdomains.
This delegates the subdomain and all of its subdomains to another DNS.

Useful for companies that want to control their own records, but might want to allow a group of developers control over app.example.com and all subdomains, without the developers having to pester the company for record updates.

Also used for acme-dns, which is a self hosted DNS designed to only deal with txt records for acme DNS challenges (ie lets encrypt).
Means you can limit the possible disaster of the DN API keys being leaked (an attacker can only generate TXT records, instead of rewriting all your DNS records)