Configuring DNSSEC

    Below is information on how to configure your domain name for DNSSEC:

    We will add, modify, or delete the DNSSEC configuration to your domain name upon request.

    Please provide the following three pieces of information via support ticket in your client area.

    Flags: may be

    256 (ZSK)
    257 (KSK)

    Algorithm: may be

    3 (DSA/SHA1)
    5 (RSA/SHA-1)
    6 (DSA-NSEC3-SHA1)
    7 (RSASHA1-NSEC3-SHA1)
    8 (RSA/SHA-256)
    10 (RSA/SHA-512)
    12 (GOST R 34.10-2001
    13 (ECDSA Curve P-256 with SHA-256)
    14 (ECDSA Curve P-384 with SHA-384)
    15 (Ed25519)
    16 (Ed448)

    Public Key


    We do not need more information then the Flags, Algorithm and Public key.

    Because most registries support key data and very few registries accept DS data, the DNSSEC records we are able to add are limited to keydata.

    Once we have the required data, we will add the necessary configuration to your domain name.  This configuration will not be visible to you in your client area, and if you want the configuration to be changed or removed, please notify us again via a support ticket with further DNSSEC requests.