Managing DNS Service Zones

The Oracle Cloud Infrastructure DNS service enables you to manage zones within the Console.

Using the Console

Managing Zones and Zone Records

For information on creating private DNS zone, see Private DNS.

To add a zone
  1. Open the navigation menu. Under Core Infrastructure, go to Networking, DNS Management, and click Zones.
  2. Click Create Zone.
  3. In the Create Public Zone dialog box, choose one of the following methods:

    • Manual - Enter the following:

      • Zone Name: Enter the name of a zone you want to create. Avoid entering confidential information.
      • Zone Type:
        • Primary - Select this option if you want to control the zone contents directly within Oracle Cloud Infrastructure.
        • Secondary - Select this option if you want Oracle Cloud Infrastructure to pull zone contents from an external server. Enter your Master Server IP address. Optionally, you can select an existing TSIG key in a specified compartment that is associated with the master server. For more information, see Managing TSIG Keys.
    • Import - Drag and drop, select, or paste a valid zone file into the Import Zone File window. The zone is imported as a primary zone. For information about formatting a zone file or how to amend a zone file exported from GoDaddy.com, see Formatting a Zone File.
  4. Click Create.

The system creates and publishes the zone, complete with the necessary SOA and NS records. For more information on adding a record to your zone, see To add a zone record.

To update a secondary zone
  1. Open the navigation menu. Under Core Infrastructure, go to Networking, DNS Management, and click Zones.
  2. Click the secondary Zone Name you want to update.

    Tip

    You can use the Zone Type sort filter to sort zone type alphanumerically in ascending or descending order.
  3. Click Master Server IPs.
  4. Select the checkbox for the Master Server IP you want to update, and then select Edit from the Actions drop-down menu.
  5. Make the needed changes, and then click Submit.
  6. (Optional) Click Add Master Server to add another Master Server IP address.
  7. Click Publish Changes.
  8. In the confirmation dialog box, click Publish Changes.

    Tip

    For OCI to transfer data from your zone, your nameservers must be able to accept a transfer request from the following IP addresses: 208.78.68.65, 204.13.249.65, 2600:2001:0:1::65, 2600:2003:0:1::65
To delete a zone
Caution

Deletion permanently removes a zone from your DNS service.
  1. Open the navigation menu. Under Core Infrastructure, go to Networking, DNS Management, and click Zones.
  2. Select the checkbox for the zone you want to delete.
  3. Click Delete. The zone is staged for deletion.
  4. Click Publish Changes to delete the zone.
  5. In the confirmation dialog box, click Publish Changes.
To add a zone record
Tip

There are many record types you can add to your zone, depending on your goals for the zone and its DNS management.
  1. Open the navigation menu. Under Core Infrastructure, go to Networking, DNS Management, and click Zones.
  2. Click the Zone Name in which you want to add a record. If you are adding a record to a private zone, click the Private Zones tab and then click the zone name. Zone details and a list of records appear.

    Tip

    To locate zones in the Private Zones tab, you can use filters to sort by zones that are protected (system generated) or by associated private view names.
  3. Click Add Record.
  4. In the Add Record dialog box, select a record type from the drop-down list, and then enter the information for the record. Avoid entering confidential information. For more information about record types, see Supported Resource Records.
  5. (Optional) Click the Add Another Record check box to add multiple records in succession.
  6. Click Submit.
    Note

    When records are added, they are staged to allow for multiple records to be combined into a set. Before records take effect, they must be published.
  7. Once your records have been added, click Publish Changes.
  8. In the confirmation dialog box, click Publish Changes.
To update a zone record
Note

Protected Records

You can change various components of the records within your zones, such as time-to-live (TTL) and relevant RDATA. However, some records contain information that cannot be changed. You can attempt changes to such records through the Actions menu, but the system might not permit updates to some fields.

  1. Open the navigation menu. Under Core Infrastructure, go to Networking, DNS Management, and click Zones.
  2. Click the Zone Name in which you want to update a record. If you are updating a record in a private zone, click the Private Zones tab and then click the zone name. Zone details and a list of records appear.

    Tip

    To locate zones in the Private Zones tab, you can use filters to sort by zones that are protected (system generated) or by associated private view names.
  3. To help find a record, you can use the following filter options:

    • Enter the name of the record's domain in the Search field.
    • To find unpublished records, select the Staged check box.
    • To find published records, select the Unstaged check box.
    • Use the Is Protected sort filter to sort by records that are protected.
    • Use the Record Type sort filter to sort records.
  4. Select the check box for the record you want to update, and select Edit from the Actions drop-down menu.
  5. In the Edit Record dialog box, make the needed changes, and then click Submit.
    Note

    When records are added, they are staged to allow for multiple records to be combined into a set. Before records take effect, they must be published.
  6. Click Publish Changes.
  7. In the confirmation dialog box, click Publish Changes.

Reverting Changes Before Publishing

You can revert records to their current published state before you publish changes. Once a record has been published, it cannot be reverted. Select the check box for the record you want to revert, and then select Revert from the Actions drop-down menu.

To delete a zone record
  1. Open the navigation menu. Under Core Infrastructure, go to Networking, DNS Management, and click Zones.
  2. Click the Zone Name in which you want to delete a record. If you are deleting a record in a private zone, click the Private Zones tab and then click the zone name. Zone details and a list of records appear.

    Tip

    To locate zones in the Private Zones tab, you can use filters to sort by zones that are protected (system generated) or by associated private view names.
  3. Select the check box for the record you want to delete, and then select Delete from the Actions drop-down menu.
  4. Click Publish Changes.
  5. In the confirmation dialog box, click Publish Changes.
To delegate a zone

To make your Oracle Cloud Infrastructure hosted zone accessible through the internet, you must delegate your domain with your domain's registrar.

  1. Open the navigation menu. Under Core Infrastructure, go to Networking, DNS Management, and click Zones.
  2. Click the Zone Name for the zone you want to delegate. Zone details and a list of records appear.
  3. Use the Type sort filter to locate the NS records for your zone.
  4. Note the name servers in the RDATA field within each NS record.
  5. You can use the noted name servers to change your domain's DNS delegation. Refer to your registrar's documentation for instructions.
To move a zone to a different compartment
  1. Open the navigation menu. Under Core Infrastructure, go to Networking, DNS Management, and click Zones.
  2. In the List Scope section, select a compartment.
  3. Find the zone in the list, click the the Actions icon (three dots), and then click Choose New Compartment.
  4. Choose the destination compartment from the list.
  5. Click Move Resource.

    For more information, see Managing Compartments.

To add a TSIG key
  1. Open the navigation menu. Under Core Infrastructure, go to Networking, DNS Management, and click Zones.
  2. Click the secondary Zone Name you want to update. Zone details and a list of master server IPs appear.
  3. Under Zone Information, click Add beside the TSIG field.

  4. In the Add TSIG Key dialog box, select one of the following options:

    • Create New TSIG Key - Enter the following information:
      • Name: The name of the key used in domain name syntax. The name should reflect the names of the hosts and uniquely identify the key among a set of keys these two hosts may share at any given time.
      • Algorithm: Select the public key's algorithm used to encrypt or decrypt data. Applicable algorithms include hmac-md5, hmac-sha1, hmac-sha224, hmac-sha256, hmac-h384, and hmac-sha512.
      • Secret: The base64 string encoding the binary shared secret that corresponds to the key. A maximum value of 255 characters is allowed.
      • Tags: Optionally, you can apply tags. If you have permissions to create a resource, you also have permissions to apply free-form tags to that resource. To apply a defined tag, you must have permissions to use the tag namespace. For more information about tagging, see Resource Tags. If you are not sure if you should apply tags, skip this option (you can apply tags later) or ask your administrator.
    • Select Existing TSIG Key - Select a TSIG Key from the drop-down menu.
  5. Click Add.
  6. Click Publish.

  7. In the confirmation dialog box, click Publish Changes.

For more information, see Managing TSIG Keys.

To remove a TSIG key from a zone
  1. Open the navigation menu. Under Core Infrastructure, go to Networking, DNS Management, and click Zones.
  2. Click the secondary Zone Name you want to update. Zone details and a list of master server IPs appear.
  3. Under Zone Information, click Remove beside the TSIG key name.

  4. Click Publish.
  5. In the confirmation dialog box, click Publish Changes. Changes cannot be made to this zone while it is updating. Updating a secondary zone locks it for a short time while our servers sync with your external master servers.

For more information, see Managing TSIG Keys.