Repo | main | DNS |
Knowledge Base | Install | Test&Debug | Dynamic Updates & RNDC | Attack Vectors & Scenario | Protection |
everything you need to know to run and protect your own DNS
- we will install private DNS on debian using bind9
- we configure the DNS to resolve our personal Dashboard Domains
we learn how to debug our dns using dig, nameserver logs, etc
- we configure our dhcp in combination with a RNDC.key
- we setup bind to use
Authentication for Dynamic Updates
how to hack a dns and what are possible attack scenarios
- how to protect your DNS using TSIG, dnssec
- Enhanced Security practices for kubernetes in combination with private dns
- how to setup our firewall
Roadmap
- we learn how and why to prevent our personal data from snooping-attacks and datamining
- this is the basis to setup cloud9 to avoid public DNS queries and therefore a huge attack-vector
- in the next step we configure our DNS in combination with our own private DHCP and subnets -ssl using certmanager and letsencrypt
- authentication using rbac and oaut2
ddos protection and proxy using cloudflare