DO Ideas 2

Create and Offer Anonymous Name Servers

Often when someone acts as a reseller does not want (matter of reputation or security) to know (or be able) their client to trace the provider from whom we resells.

For my situation, anonymous name servers (same functionality as ns1/ns2/ns3.digitalocean.com) but without the domain/ip trace back to digitalocean can offer the possibility to install and configure a bind server on my droplet and allow zone transfers from that to the anonymous name servers of yours.

By this way, the droplet owners will have "hidden primary name servers", untraceable provider and an increased level of security.

  • ManosK.
  • Sep 11 2018
  • Attach files
  • Pablo commented
    September 11, 2018 19:09
  • Jasmine commented
    September 11, 2018 19:09

    There's no way to *completely* anonymise this, a user could just perform an IP whois on the Name server IP and find that you were using DO, seems like a complete waste of time to me.

  • ManosK. commented
    September 11, 2018 19:09

    Dear Moisey,

    Concerning the anonymous name servers request, according to my knowledge the implementation only will cost 2/3 spare IPs from your side and an IP alias config on your existing name-servers in order bind to listen to the alias interface also (around 5 minutes work).

    Of course I cannot and I am not trying to be a "pain in the ass" but really I believe it is a feature which in combination with the reseller/affiliate feature will boost selling.

    I hope to reconsider the issue and really hoping not to bring any trouble.

    Thanks in advance.

    Regards,
    Manos

  • vsbalingan commented
    September 11, 2018 19:09

    Oh, ok thanks for the update. I still hope you do provide this. :-)

  • Moisey Uretsky commented
    September 11, 2018 19:09

    Looks like it was incorrectly marked.

    I don't believe we are looking into offering this currently, I've updated the status of the request.

  • vsbalingan commented
    September 11, 2018 19:09

    Is the suggestion of ManosK, which I would also like to be implemented, for some sort of "anonymous" nameservers already granted/implemented? This is already marked as "completed" but when i do a DNS lookup on the IP assigned to my vps, it still shows up DO's. Or did I miss something? Please clarify. Thanks.

  • Moisey Uretsky commented
    September 11, 2018 19:09

    Thanks for the suggestion manos we'll consider it =]

  • ManosK. commented
    September 11, 2018 19:09

    That is helpfull, but I thought is somehow different. Explaining:

    Set to your name-servers three additional IP with no PTR to ns1/ns2/ns3.digitalocean.com or with a PTR that "cannot trace back" (let's say ns1/ns2/ns3.anondnsservice.com) and then we can use those as nameservers.

    With this solution we do not have to loose resources and set up bind and also I guess we will have all the protection you offer (redundancy, firewalling, etc),

    I propose this as a solution for a more "convenient one" for resellers.

    Thanks in advance.

    Regards,
    Manos

  • Kamal Nasser commented
    September 11, 2018 19:09

    You can point your nameservers to our nameservers' IPs and it would work fine :]