How can we help you today?

How to Use DNSSEC

Created by: Sophie van Vrijberghe de Coningh

Modified on: Tue, 13 Oct, 2020 at 5:23 PM


Please note that this only applies to Service Panel users who log in via service.byte.nl.

DNSSEC stands for Domain Name System Security Extensions. DNSSEC strengthens authentication in DNS using a cryptographic signature, to make sure answers provided by the DNS server are valid and authentic. When using DNSSEC, visitors can be ensured that they are connecting to the website they requested and are not being misled by a hacker.

DNSSEC can be activated via the Byte Service Panel.

TABLE OF CONTENTS

What Is DNS?

DNS stands for Domain Name System and is a protocol that translates domain names to IP addresses on the internet. A DNS server is simply a table that contains IP addresses and hostnames (the name of a computer). The internet also uses DNS. When you go to a website, the IP address of the server behind the domain name is checked.

What Is DNSSEC?

DNSSEC ensures that DNS can be trusted. With DNSSEC visitors can assume that the website that's being served is the actual website. Without DNSSEC, it's possible for hackers to redirect traffic to a website to their own computer for all sorts of malicious activities, such as cache poisoning and pharming. For example, as an unsuspecting visitor you can be sent to a fake webshop where you share sensitive information such as your email address and credit card details because you think you are dealing with a reliable webshop. It is also possible for hackers to read your emails or change your searches. If you want to know whether DNSSEC is activated for your domain, use a DNSSEC analyzer.

DNSSEC vs. SSL

DNSSEC is not the same as SSL. Even if you secure your website with an SSL certificate and redirect all traffic over HTTPS, the path that visitors have to take to your website can still be altered by hackers. DNSSEC secures the part between entering a domain name in the address bar and actually visiting the website.

Importance DNSSEC for webshops

Certain quality marks, including those of Thuiswinkel.org, require web shops to use modern, reliable internet standards. The use of DNSSEC and SSL is part of this. Use of DNSSEC is therefore a requirement to be allowed to use an important quality mark.

Transferring My Domains to Hypernode

If you transfer your domain to Hypernode and want to use our name servers, keep in mind that DNSSEC at Hypernode can only be activated after the domain has been moved and the name servers have been changed to those of Hypernode.

If you use DNSSEC with your current Registrar, disable DNSSEC before you initiate the domain name transfer.

How to Activate DNSSEC

You can easily activate DNSSEC for your domains via the Service Panel. Please note that you can only do this if:

  • Your domain is hosted at Hypernode.
  • Your domain uses our name servers.
  • Your domain extension supports DNSSEC.

Follow the steps below to activate DNSSEC:

  1. Log in to the Service Panel (service.byte.nl).
  2. Select the domain from the domain overview.
  3. Click the tab Instellingen.
  4. Then select DNS.
  5. On the DNS page, you will see a green Activeer DNSSEC button.
  6. Click the button to activate DNSSEC. Depending on the extension, it can take up to 24 hours to be in effect.

You can disable DNSSEC at any time. Please note it can take up to 24 hours to be completely disabled.

S
Sophie is the author of this solution article.

Did you find it helpful? Yes No

Send feedback
Sorry we couldn't be helpful. Help us improve this article with your feedback.