Manage Xloud DNS nameserver pools — configure pool attributes for zone scheduling, monitor nameserver health, and add or remove nameservers from pools.
DNS pools group nameserver backends that process zone data. Multiple pools support
geographic distribution or tiered service levels. Pool attributes control automatic
zone scheduling — when a zone is created, the DNS service selects a pool based on
attribute matching policies.
Administrator Access Required — This operation requires the admin role. Contact your
Xloud administrator if you do not have sufficient permissions.
Pools use key-value attributes to match zones during scheduling. When a zone is created
without an explicit pool assignment, the DNS service selects a pool based on these
attributes.
Attribute
Example Values
Purpose
service_tier
standard, premium
Route zones to capacity-appropriate pools
region
east, west
Assign zones to geographically local pools
tenant_type
internal, external
Separate internal and external zones
Configure pool attributes through XDeploy service configuration files.
Monitor the health of pool nameservers by verifying they are authoritatively
answering queries for managed zones:
Verify nameserver is authoritative
Copy
dig @<nameserver-ip> example.com. SOA +norecurse
A healthy nameserver returns the SOA record with AUTHORITY: 1. If the nameserver
returns SERVFAIL or does not respond, check the DNS service worker logs for
synchronization errors.
All nameservers in a pool should have the same SOA serial number for a given zone:
Check SOA serial on each nameserver
Copy
dig @<ns1-ip> example.com. SOA +shortdig @<ns2-ip> example.com. SOA +short
Mismatched serials indicate a synchronization lag. Check DNS worker logs for push
errors to the affected nameserver’s target configuration.
Adding nameservers requires updating the pool configuration through XDeploy. After
adding a nameserver:
1
Update pool configuration in XDeploy
Add the new nameserver to the pool’s nameservers and targets lists in the
XDeploy DNS service configuration.
2
Deploy the configuration
Apply the updated configuration:
Deploy DNS service configuration
Copy
xavs-ansible deploy -t dns
3
Verify the new nameserver receives zone data
Verify zone synchronization on new nameserver
Copy
dig @<new-ns-ip> example.com. SOA +norecurse
Wait for the zone data to synchronize before proceeding.
4
Update external NS delegation records
Update the NS delegation records at the domain registrar to include the new
nameserver. Allow 48 hours for resolver caches to propagate the new NS records globally.
Do not remove an existing nameserver from a pool until the new nameserver is fully
synchronized and the old NS records have expired from resolver caches (typically 48 hours).
