DNS with underscore won't update

Question

Recently Playing around with Digitalocean's DNS service and found a strange issue that doesn't exists of other DNS provider.

When a record with underscore(s) in it, all subsequent update to that zone won't take effect unless that record is removed.

That means the zone file is updated but external dns query will only get answer from previous records.

I can rule out DNS caching causing the problem, since new record will always get a NXDOMAIN and I tried to query the root DNS server of my domain. I even try to query after TTL but the result is the same as the old zone file.

I am curious what kind of problem is it? And in what situation will this happen?

I've question Digitalocean's support but they seems busy and not interested to this question.

So I post the question here hope someone can point me to the answer.

Answer 1

If the problem is with Digitalocean's DNS service only, they're pretty much the only place that can help you. If they refuse to help you (support seems busy), you should look for another service.

Answer 2

This is one of the differences between Windows and Unix-based DNS servers. Windows servers consider the underscore as a valid character. Unix-based servers (specifically BIND) does not. For this latter, there is a work-around: create a valid A record (without the underscore) and then create a CNAME (with the underscore) which points to the hostname in the A record. It's a bit of a kluge but it's valuable when dealing with customers who insist on using underscores in hostnames.

Answer 3

Following the recommendation in Digital Ocean, I create a subdomain called domainkey.mydomain.com. Then I can create a CNAME _domainkey.mydomain.com Then you can create s1._domainkey.mydomain.com or s2.domainkey.mydomain.com for Sendgrid.