There’s got to be a better way to achieve this

I have two A records setup as follows. One for the domain, and one for all wildcards.

It works. I can use example . com, fubar.example . com, foobar.example . com etc. I don’t mind the fact (too much) that any sort of typo like oops.example . com resolves, but that’s a side effect of having the wildcard. And if my ip changes, I have to update two records.

But is there a better, more “correct” way of achieving this (example . com foobar.example . com, fubar.example . com) and only have to update one ip address, and explicitly create records for FOOBAR, FUBAR so that OOPS doesn’t resolve?

Try a CNAME for foobar that points to

