Is it good practice to Use the main webhosting server as ns1 in the likely event of a DOS attack?

Discussion in 'HOWTO-Related Questions' started by adamjedgar, May 6, 2018.

  1. adamjedgar

    adamjedgar Member

    i note that in many tutorials we are directed to setup our main webhosting server as ns1 and a second virtualmin instance as ns2.

    in the age when DOS attacks are a major concern, is this actually good practise?

    for someone going out on their own with a webhosting business (albeit a very small startup), should i instead have a minimum 3 server setup or it is quite ok to go with the 2 server model as outlined in the BIND DNS tutorials? (ie web hosting server, ns1, ns2)
     
  2. ztk.me

    ztk.me Well-Known Member HowtoForge Supporter

    if you don't need external DNS services e.g. from your domain registrar and thus need your own using ISPConfig well... depends:

    DNS is likely to be attacked
    DNS on primary server with other services ... yeah bad
    Secondary Servers in ISPConfig ( afaik ) currently suffers from no DNSSEC-support ( only primary server has it ).
     

Share This Page