Forum Discussion

Nath's avatar
Icon for Cirrostratus rankCirrostratus
Nov 10, 2023

DNSSEC in CNAME records


Has anyone experienced having issues with CNAME records when DNSSEC is enabled?

I have this situation where one CNAME got a problem after enabling DNSSEC. Then after removing the DNSSEC configuration and DS records on the parent domain, the DNS resolution works after the propagation time of 8-10 mins.

1 Reply

  • Can you provide an example? We're both the A record and CNAME record in the same zone? Where you able to query and validate the DNSSEC sig for the A record? What was the issue with the CNAME lookup?