: My website's DNS no longer resolved after my hosting provider suffered a DDoS attack I registered a couple of domains with a local hosting provider. I set up the records with the correct IP

@Pope3001725

If I am understanding this correctly, I believe you have a dedicated server with Company A while you are purchasing domains from a separate company/registrar (Company B).

I am also going to assume that you are not hosting your own DNS service such as: ns1.yourdomain.com and are using the domain registrar's DNS service with nameservers such as: ns1.domainregistrar.com.

Now assuming there is no record caching anywhere, if your DNS service is down for an extended period of time then you domain will stop resolving because there will be no responses to incoming DNS queries.

Users attempting to resolve your site do so with the DNS resolvers from their ISP, this is the client-side of DNS service. The resolvers are sending the DNS queries to your DNS service asking for the translation of a domain name into an IP address.

Now due to the possibilities of circular dependencies, GLUE records get sent along to the DNS resolvers. A perfect example would be domains using the same domain name for the nameservers. For example: example.com having the nameservers: ns1.example.com and ns2.example.com; in order for a computer to resolve example.com, a computer must resolve the nameserver ns1.example.com but since ns1 is contained within example.com, then example.com must be resolved first. This you can see will cause a circular dependency and that's where GLUE records come in.

The GLUE records are address records that provide IP addresses for ns1.example.com. The resolver uses one or more of these IP addresses to query one of the domain's authoritative servers, which allows it to complete the DNS query. Though if the authoritative DNS service is inaccessible, then the domain will still not resolve.

What I would suggest would be hosting your own DNS service - plenty of web server control panels (such as cPanel) are already configured to do so. You also do not need to move your domains from any registrar. Once your DNS Service is setup, all you would have to do is change your domains nameservers to your own.

Depending on your budget you could grab a couple really cheap VPSs in separate GEO locations and run cPanel DNSONLY (completely free) which will allow you to cluster your DNS and have your own fault tolerant DNS service.

PS. Definitely I also recommend using online DNS checks to verify your site's DNS health.

Vote Up Vote Down

@Pierce454

DNS was likely providing the right IP address, but when someone got to that IP address the server was either overwhelmed with requests for the DDOS or they had taken it down or perhaps they were trying to re-route traffic to another machine more robust or any one of a number of things.

Just because you can't reach a server doesn't mean it is a DNS problem.

Vote Up Vote Down