DNS Management
Subnetly manages authoritative DNS for your internal domains, reverse zones, forwarders, and secondaries — and can host public internet-facing domains in the cloud. This section covers everything from creating your first zone to DNS firewall policies.
Open DNS from Network Operations → DNS in the left navigation.
In this section
- Zones — create and manage DNS domains: authoritative, reverse, forwarder, and secondary zones.
- Records — add, edit, and delete A, AAAA, CNAME, MX, TXT, and other records inside a zone.
- Zone settings — per-zone ACLs and SOA parameters, plus global DNS server options (recursion, forwarders, RRL, root hints).
- Public DNS — host external/internet-facing domains under Subnetly nameservers.
- DNS firewall (RPZ) — block or redirect malicious domains with response policy zones.
- DNS ACLs — named address lists you reuse across zones and the server.
How DNS serving works
- You define zones and records in the console.
- Each zone is deployed to one or more agents (as primary/secondary) or served by any agent assigned to the zone's site (or left global).
- Subnetly renders BIND 9 configuration and zone files and pushes them to those agents.
- The SOA serial bumps automatically on every record change, so secondaries and caches pick up updates.
Quick tasks
| I want to… | Go to |
|---|---|
| Add a new internal domain | Create a zone |
| Add an A / CNAME / MX record | Add a record |
| Host a public domain on the internet | Public DNS |
| Set up a reverse (PTR) zone | Reverse zones |
| Forward a domain to another resolver | Forwarder zones |
| Restrict who can query or transfer a zone | Zone settings |
| Block known-bad domains | DNS firewall |