Skip to main content

Key concepts

KakaoCloud's DNS (Domain Name System) is a service that responds to the domain entered by a user to access a site with the actual IP address of the computer hosting the site. Using the DNS service, users can create DNS zones and DNS records without managing their own DNS servers and receive address information over the Internet. For example, when a user enters https://kakaocloud.com/ in a web browser, DNS converts it into the actual IP address of the computer hosting https://kakaocloud.com/ and responds so that the user can access the site via the resolved IP.

info
  • The DNS service does not support domain name purchase or renewal. Please contact a separate domain registrar for domain registration or renewal.

DNS zone

A DNS zone is an object composed of multiple records and represents the DNS information managed by the user. Users can create DNS records in the created DNS zone and receive queries from the internet. For details on managing zones, see Create and manage DNS zone.

DNS record

DNS records are mappings between domain names and DNS resources, defining how the DNS server handles access requests. KakaoCloud supports the following record types. The record statuses are:

ParameterDescription
ActiveRecord set is in a healthy state
PendingRecord set is in progress (Create, Update, Delete)
- DNS resolution may not be guaranteed
ErrorTimeout occurred during Pending
- DNS resolution may not be guaranteed

A record

An A (Address) record maps a domain name to an IPv4 address.

A record example
192.168.10.1

AAAA record

An AAAA (quad-A) record maps a domain name to an IPv6 address.

AAAA record example
2001:0DB8:1000:0000:0000:0000:1111:2222
2001:DB8:1000::1111:2222

CAA record

A CAA (Certification Authority Authorization) record specifies which certificate authorities (CAs) are permitted to issue certificates for a domain.

CAA record format
[ flags tag value ]
ParameterDescription
flagsSpecial meaning per value
- Supported: 0, 1
tagPossible values:
- issue: CA that can issue certificates
- issuewild: CA that can issue wildcard certs
- iodef: Email address to report policy violations
valueDepends on tag:
- 0 issue "letsencrypt.org"
- 0 issuewild "letsencrypt.org"
- 0 iodef "<mailto:admin@example.com>"
CAA record example
[ 0 issue abc.example.com ]

CNAME record

CNAME (Canonical NAME) records alias one domain name to another.

CNAME record example
abc.example.com.

MX record

MX (Mail Exchanger) records define mail servers for a domain and their priorities.

MX record format
[ Preference DomainName ]
ParameterDescription
PreferencePriority value: 0 ~ 65535
DomainNameMail server domain name
e.g., mail.example.com.
MX record example
10 mail.example.com.

NAPTR record

NAPTR (Name Authority Pointer) records are primarily used in Internet telephony to map phone numbers to SIP URIs.

info

For details, refer to RFC 4848 Section 4.

NAPTR record format
[Order Preference Flags Service Regexp Replacement]
ParameterRequiredDescription
OrderYesLower value = higher priority
Range: 0 ~ 65535
PreferenceYesOrder within the same Order value
Range: 0 ~ 65535
FlagsYesInterpret field values
Accepted: "A", "P", "S", "U"
ServiceYesDepends on application; see applicable RFCs
RegexpOptionalAlternative expression; ASCII only
ReplacementOptionalDomain name; if Regexp used, append .
NAPTR record examples
100 50 U E2U+sip !^+441632960083$!sip:1@example.com! test.com.
100 51 U E2U+h323 !^+441632960083$!h323:operator@example.com! test.com.
100 52 U E2U+emailmailto !^.*$!mailto:info@example.com! test.com.

NS record

NS (Name Server) records designate authoritative name servers for a domain.

NS record example
ns1.example.com.

SRV record

SRV (Service) records define the host and port for specific services.

  • Name format: _service._proto.name (e.g., _ldap._tcp.example)
SRV record format
[ Priority Weight Port DomainName ]
ParameterDescription
PriorityLower = higher priority
Range: 0 ~ 65535
WeightWeight among records with the same priority
Range: 0 ~ 65535
PortPort number
Range: 0 ~ 65535
DomainNameTarget service domain
SRV record example
10 30 443 abc.example.com.

SPF record

SPF (Sender Policy Framework) records help validate mail senders.

caution

SPF records are supported but not recommended. Use TXT records with SPF values instead.

SPF record example
"v=spf1 mx:example.com -all"

TXT record

TXT (Text) records store arbitrary text data. The value must be enclosed in " ".

  • Max 255 characters per record, up to 2048 per record set.
TXT record example
"v=spf1 mx:example.com -all"

SOA record

SOA (Start of Authority) records store authoritative DNS zone data. Created by default; cannot be modified or deleted.

SOA record format
[ primary-name-server email-of-responsible-person serial-number refresh-interval retry-interval expiration-time minimum-TTL ]
ParameterDescription
primary-name-serverHost name of the primary name server
email-of-responsible-personEmail address of the zone admin
serial-numberSerial identifying zone updates
refresh-intervalInterval for refreshing zone data
retry-intervalRetry interval if refresh fails
expiration-timeTime before zone data is considered invalid
minimum-TTLMinimum TTL for zone records
info

SOA record format is system-generated and cannot be manually entered, so examples are omitted.

TTL settings

TTL (Time To Live) defines how long DNS record changes are cached by DNS resolvers.
You can set TTL from 0 to 604800 seconds depending on your operational requirements.
Use shorter TTLs for faster updates and longer TTLs to reduce load after stabilization.

IAM role management

IAM role management for DNS uses Role-Based Access Control (RBAC).
Project members with appropriate roles can create DNS zones and manage records.

info

Project Admin and Project Member can manage zones and records.
Project Reader can only view them. Check your role under KakaoCloud Console > Profile (top right) > Account Info.

DNS zone permissions
PermissionProject AdminProject MemberProject Reader
Create DNS zones & records
View zones & records
Edit zones & records
Delete zones & records
DNS record permissions
PermissionProject AdminProject MemberProject Reader
Create record
View record
Edit record
Delete record