Librehosters DNS-service

What would you guys think about having a DNS environment that is provided by librehosters?
I spend some thoughts on it and personally I would really think it would be pretty cool to do, so people can use a free DNS-service that offers transparency and also using libre and ethical software.

I can imagine that such service would attract people that is a part of the Librehosters network and people that want a free DNS-service without having to turn to big providers like Cloudflare.

A DNS service would need:

  • Somekind of webUI ( do have a simple bu fully usable UI, inspiration?)

  • Servers located on several places

  • Hostnames that is not under the same domainname and even tld.

  • DNSSEC support - this can be “solved” by OpenDNSSEC. But that alone would not make it to work out of the box. If we would automate it - we need to write an EPP compatible software that takes care of that.

A DNS service would not need:

  • Anycast - even if it would be nice, but it is not important
  • A fancy UI

A DNS service would be cool if it had:

  • An API or support for dynamic DNS

What is your thoughts about this? Is this a good idea or a bad idea?
Would it even make sense to have such service when there is already plenty of providers out there?

1 Like

I think some of the groups in librehosters already host DNS . We dont really want to provide much infrastructure as librehosters i think as thats just more stuff to maintain and we all have stacks to maintain already. But its likely that some groups already offer this. At we host our own dns with powerdns but we are not allowing free access to the DNS servers, its just used for internal and for our contributors.

We provide a service like this, members of our co-op can use GitLab to manage Bind 9 zonefiles and when they update then they are checked and our DNS servers update, there is some more detail about this in this thread:

And on this wiki page.

The things that we need to add, when we find the time and resources are:

  • The ability to provide the data in JSON and / or YAML format
  • API access to allow Let’s Encrypt to use DNS verification and for dynamic DNS

If anybody would like to join our co-op and help with the development of this service that would be most welcome.

1 Like

Totally agreed with all three :slight_smile:

As @realitygaps reminded, has no vocation to provide services to third parties.
But nothing prevents some librehosters to pool resources and decide to provide a common DNS service or reciprocate cross-AS DNS servers. On the contrary, this kind of attitude is encouraged.


I dunno if that’s relevant, but here are my two cents :

  • At ARN / Sans-Nuage, we maintain the service which is quite close to this. The software behind this is DNSmanager : . There are a few quacks and it is written in perl but it seem to work pretty well :wink:

  • In YunoHost, we use a software called Dynette and the use case if much different (there’s no graphical UI, there are constrains on what fields you can use exactly, and the goal is automatic configuration from the client being the yunohost instance)

Since we’re gathering DNS resources, here’s an old one for managing BIND zones with Git, including dynamic DNS support and user-controlled zones:

We dont really want to provide much infrastructure as librehosters i think as thats just more stuff to maintain

Well, if you are concerned about stuff to maintain - why have or even librehosters then? :wink:
Joke aside, I get your point.

Personally, I would love to see a project like this between different hosters. Would be nice if we could pull something off.

Best way to do so is to start collaborating with one other librehoster who shares your concern and grow from there.



So if anyone in this community want’s to do something like this - please let me know :slight_smile:

As I said above we are doing something like this…

But you did not say that you was open to collaboration between hosters, only people in your co-op. Or did I misunderstand you?

That is right, if you are interested in working with us on this you could join our co-op for £1 — we are a multi-stakeholder co-operative made up of investors, partners, client and workers.

I have launched a FreeDNS-service at
At the moment, signups is made by sending an email to the address on the website.

It is currently beta, but if you want to use it one of the servers as slave-dns - hook me up :slight_smile:

I am currently using it for cirka 10 domains, and a couple of more is using it as slave only, some examples:

╭─jonathan@trisquel ~  
╰─➤  dig +short NS

╭─jonathan@trisquel ~
╰─➤ dig +short NS

It is also possible to use them as a slave DNS only, for those who wants it - completely for free.

1 Like

I usually use servers when I need to use a public DNS. I haven’t tried digging under the surface, but they seem legit and decent.


I am not talking about resolvers, rather authoritative DNS servers that you for example use for domain (
You currently use

oh, ok. I didn’t read as thoroughly as I should have through your last post.
The DNS slave option is an interesting option for hosters indeed, I’ll give it a go once my current projects settle.

1 Like

Yeah, for some reason when I talk about it - everyone assumes it is somekind of “pi-hole as a service” or something :stuck_out_tongue:

There’s PDNS Manager that could be used as UI.

Self-registration is missing though, but could be implemented relatively easily.

Some services using that GUI:

1 Like

@Wiox, what do you use to deply domains added to master to the slave servers?

  • what software do you use?

My setup’s currently the following:
PowerDNS as master (freedns) + 2 knot as slaves (ns1, ns2)

1 Like

Blockquote what do you use to deply domains added to master to the slave servers?

I assume you mean AXFR/IXFR, “replicate”?
I use PowerDNS on the master and the secondary DNS servers. The master is configured as a “supermaster” - every AXFR that is made from the master to the secondarys is automatically accepted into the secondary DNS-server - so called supermaster/superslave.