By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

NS record in Route53 for my sub domain with some value which is not DNS name

0

In My route53 hosted zone found a NS record for my sub domain with some value which is not DNS name. My question is how is it possible to create NS record for sub domain as a admin I have not created any NS record.

Topics
Networking & Content Delivery
Tags
Amazon Route 53
Language
English
rePost-User-8154062
asked a year ago564 views
2 Answers
0

It is possible for a NS record to be created for a subdomain without the administrator's knowledge if the parent domain has been configured to allow this. In Route 53, the administrator of the parent domain can create a delegation set, which consists of a group of NS records that can be used by subdomains. When a subdomain is created, it can be associated with the delegation set, allowing it to use the NS records in the set. This allows the subdomain to use its own set of name servers, independent of the parent domain.

It is also possible that the NS record for the subdomain was created by someone else with access to the parent domain's hosted zone. In this case, the administrator may not have been aware of the creation of the NS record.

profile picture
Robert Dahlborg
answered a year ago
  • rePost-User-8154062
    a year ago

    we don't have delegation set and no one else has permission to create NS record. Also, when I try to create NS record from console screen it's always been disabled.

0

If you want to see who created an NS record in Amazon Route 53, you can view the record's history in the Amazon Route 53 console. To do this, follow these steps:

Sign in to the AWS Management Console and open the Amazon Route 53 console.

In the navigation pane, choose Hosted zones.

Select the hosted zone that contains the NS record you want to view.

In the record sets list, choose the NS record you want to view.

In the record set details pane, choose the History tab.

The history of the NS record will be displayed, including the date and time when the record was created or modified, and the AWS Identity and Access Management (IAM) user or role that performed the action.

Keep in mind that this information is only available for up to 90 days after the record was created or modified. After that time, the history for the record will be deleted and cannot be recovered.

Additionally, if you want to see who has permission to create or modify DNS records in your hosted zone, you can view the IAM policies that are attached to your hosted zone. To do this, follow these steps:

Sign in to the AWS Management Console and open the Amazon Route 53 console.

In the navigation pane, choose Hosted zones.

Select the hosted zone that you want to view the permissions for.

In the details pane, choose the Permissions tab.

The IAM policies that are attached to your hosted zone will be listed, along with the actions that are allowed by each policy.

You can use this information to determine who has the ability to create or modify DNS records in your hosted zone, and to make any necessary changes to those permissions.

profile picture
Robert Dahlborg
answered a year ago
  • rePost-User-8154062
    a year ago

    Thanks, Robert I couldn't find History for the record or permission tab in console.

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content