I'm trying to add DNSSEC and it's different than I'm used to:
1) At Gandi, I need: Flags, Algorithm, and Public Key
2) At Vultr, I see: Record Type, Key Type, Algorithm, Digest Type, and Digest. Below that is the DNSSEC Record.
What flag should I use? Gandi's choices are 256 (ZSK), and 257 (KSK)
Is the Digest what I should be using for Public Key? When I enter the info, Gandi generates its own Digest (SHA256) that doesn't match Vultr's Digest.
I haven't had to enter two DS record sets of data before. I need both?