This guide will walk you through the process of installing PowerDNS and configuring it with the MySQL backend on Ubuntu 22.04 LTS. It includes steps for setting up the MariaDB database, configuring PowerDNS, installing necessary dependencies, and setting up the PowerDNS Admin web interface.
sudo apt update && sudo apt upgrade -yFirst, we need to install and configure the MariaDB database, which will serve as the backend for PowerDNS.
sudo apt install mariadb-server -yCheck the status of the MariaDB service and fix any Errors:
systemctl status mariadb.serviceSecure the MariaDB installation:
sudo mysql_secure_installationWhen you run this command, the server will show the following prompts. Please follow the steps as shown below to complete the setup correctly.
Enter current password for root: (Enter your SSH root user password)
Switch to unix_socket authentication [Y/n]: Y
Change the root password? [Y/n]: Y
It will ask you to set new MySQL root password at this step. This can be different from the SSH root user password.
Remove anonymous users? [Y/n] Y
Disallow root login remotely? [Y/n]: N
Remove test database and access to it? [Y/n]: Y
Reload privilege tables now? [Y/n]: Y
Login to MySQL as root:
sudo mysql -u root -pCreate Powerdns Database and User then add the Default Schema
CREATE DATABASE powerdns;
GRANT ALL ON powerdns.* TO 'powerdns'@'localhost' IDENTIFIED BY 'someStrongPassword';
FLUSH PRIVILEGES;
USE powerdns;Default Schema for MYSQL provided by Powerdns here
CREATE TABLE domains (
id INT AUTO_INCREMENT,
name VARCHAR(255) NOT NULL,
master VARCHAR(128) DEFAULT NULL,
last_check INT DEFAULT NULL,
type VARCHAR(8) NOT NULL,
notified_serial INT UNSIGNED DEFAULT NULL,
account VARCHAR(40) CHARACTER SET 'utf8' DEFAULT NULL,
options VARCHAR(64000) DEFAULT NULL,
catalog VARCHAR(255) DEFAULT NULL,
PRIMARY KEY (id)
) Engine=InnoDB CHARACTER SET 'latin1';
CREATE UNIQUE INDEX name_index ON domains(name);
CREATE INDEX catalog_idx ON domains(catalog);
CREATE TABLE records (
id BIGINT AUTO_INCREMENT,
domain_id INT DEFAULT NULL,
name VARCHAR(255) DEFAULT NULL,
type VARCHAR(10) DEFAULT NULL,
content VARCHAR(64000) DEFAULT NULL,
ttl INT DEFAULT NULL,
prio INT DEFAULT NULL,
disabled TINYINT(1) DEFAULT 0,
ordername VARCHAR(255) BINARY DEFAULT NULL,
auth TINYINT(1) DEFAULT 1,
PRIMARY KEY (id)
) Engine=InnoDB CHARACTER SET 'latin1';
CREATE INDEX nametype_index ON records(name,type);
CREATE INDEX domain_id ON records(domain_id);
CREATE INDEX ordername ON records (ordername);
CREATE TABLE supermasters (
ip VARCHAR(64) NOT NULL,
nameserver VARCHAR(255) NOT NULL,
account VARCHAR(40) CHARACTER SET 'utf8' NOT NULL,
PRIMARY KEY (ip, nameserver)
) Engine=InnoDB CHARACTER SET 'latin1';
CREATE TABLE comments (
id INT AUTO_INCREMENT,
domain_id INT NOT NULL,
name VARCHAR(255) NOT NULL,
type VARCHAR(10) NOT NULL,
modified_at INT NOT NULL,
account VARCHAR(40) CHARACTER SET 'utf8' DEFAULT NULL,
comment TEXT CHARACTER SET 'utf8' NOT NULL,
PRIMARY KEY (id)
) Engine=InnoDB CHARACTER SET 'latin1';
CREATE INDEX comments_name_type_idx ON comments (name, type);
CREATE INDEX comments_order_idx ON comments (domain_id, modified_at);
CREATE TABLE domainmetadata (
id INT AUTO_INCREMENT,
domain_id INT NOT NULL,
kind VARCHAR(32),
content TEXT,
PRIMARY KEY (id)
) Engine=InnoDB CHARACTER SET 'latin1';
CREATE INDEX domainmetadata_idx ON domainmetadata (domain_id, kind);
CREATE TABLE cryptokeys (
id INT AUTO_INCREMENT,
domain_id INT NOT NULL,
flags INT NOT NULL,
active BOOL,
published BOOL DEFAULT 1,
content TEXT,
PRIMARY KEY(id)
) Engine=InnoDB CHARACTER SET 'latin1';
CREATE INDEX domainidindex ON cryptokeys(domain_id);
CREATE TABLE tsigkeys (
id INT AUTO_INCREMENT,
name VARCHAR(255),
algorithm VARCHAR(50),
secret VARCHAR(255),
PRIMARY KEY (id)
) Engine=InnoDB CHARACTER SET 'latin1';
CREATE UNIQUE INDEX namealgoindex ON tsigkeys(name, algorithm);Exit From MySQL
exitYou may need to disable systemd-resolved to avoid conflicts with DNS resolution:
sudo systemctl stop systemd-resolved.service
sudo systemctl disable systemd-resolved.servicesudo vim /etc/resolv.confComment Out the nameservers
#nameserver 127.0.0.53
#options edns0 trust-ad
#search some domain
Replace it with
nameserver 8.8.8.8
nameserver 1.1.1.1
Update Server after changing nameservers
sudo apt updateCreate the file '/etc/apt/sources.list.d/pdns.list' with this content:
deb [signed-by=/etc/apt/keyrings/auth-49-pub.asc] http://repo.powerdns.com/ubuntu jammy-auth-49 mainPut this in '/etc/apt/preferences.d/auth-49':
Package: auth*
Pin: origin repo.powerdns.com
Pin-Priority: 600and execute the following commands:
sudo install -d /etc/apt/keyrings; curl https://repo.powerdns.com/FD380FBB-pub.asc | sudo tee /etc/apt/keyrings/auth-49-pub.asc &&
sudo apt-get update &&
sudo apt-get install pdns-server pdns-backend-mysql -ysudo apt install net-toolsTo configure PowerDNS to use the MySQL backend, make sure you modify the PowerDNS configuration files.
Backup the default bind.conf file that is under "/etc/powerdns/pds.d":
cd /etc/powerdns/pds.d
mv bind.conf bind.conf.bakCreate pdns.local.gmysql.conf
sudo vim pdns.local.gmysql.confAdd the following:
# MySQL Configuration
# Launch gmysql backend
launch+=gmysql
# gmysql parameters
gmysql-host=localhost
gmysql-port=3306
gmysql-dbname=powerdns
gmysql-user=powerdns
gmysql-password=userpassword
gmysql-dnssec=yes
# gmysql-socket=Restart pdns.service and check it's status for any errors:
sudo systemctl restart pdns.service
sudo systemctl status pdns.serviceBackup the default named.conf and pdns.conf file that is under "/etc/powerdns":
cd /etc/powerdns/
mv named.conf named.conf.bak
mv pdns.conf pdns.conf.bakAdd the Following in pdns.conf
allow-axfr-ips=192.168.30.3, 192.168.30.4, 192.168.40.3,192.168.40.4 #slave server ip
also-notify=192.168.30.3,192.168.30.4,192.168.40.3,192.168.40.4 #slave server ip
api=yes
api-key=86b0054c-43f3-4e8e-8bfb-719ffb05d6c8 #You can generate one from https://codepen.io/corenominal/pen/rxOmMJ
daemon=yes
default-soa-content=master.@ hostmaster.@ 0 1800 3600 604800 5400
disable-axfr=no
guardian=yes
include-dir=/etc/powerdns/pdns.d
launch=
local-address=0.0.0.0
local-port=53
log-dns-details=on
log-dns-queries=yes
log-timestamp=yes
loglevel=4
master=yes
security-poll-suffix=
setgid=pdns
setuid=pdns
slave=no
version-string=powerdns
webserver=yes
webserver-address= #ip address of the webserver
webserver-allow-from=::/0, 0.0.0.0/0
webserver-port=8081- Set Up PowerDNS Admin Interface (Optional) If you want to manage PowerDNS via a web interface, you need to install PowerDNS Admin.
Install necessary dependencies:
sudo apt install python3-dev libxml2-dev libxslt1-dev zlib1g-dev libsasl2-dev libldap2-dev build-essential libssl-dev libffi-dev libmysqlclient-dev libjpeg-dev libpq-dev libjpeg8-dev liblcms2-dev libblas-dev libatlas-base-dev Install Flask and required packages:
curl -fsSL https://deb.nodesource.com/setup_lts.x | sudo -E - pip install -r requirements.txt Configure the PowerDNS Admin service:
sudo vim /etc/systemd/system/powerdns-admin.service sudo systemctl daemon-reload sudo systemctl restart powerdns-admin sudo systemctl enable powerdns-admin sudo systemctl status powerdns-admin Install and configure Nginx:
sudo apt install nginx -y sudo vim /etc/nginx/conf.d/powerdns-admin.conf nginx -t sudo systemctl restart nginx sudo systemctl enable nginx sudo systemctl status nginx 7. Testing PowerDNS Installation To verify that PowerDNS is resolving DNS records, you can run a query with dig:
dig @127.0.0.1 imbraintl.com A If you see a successful answer, PowerDNS is working as expected.
- Troubleshooting If you run into any issues, check the logs:
sudo journalctl -xeu pdns.service