Created
July 22, 2014 22:46
-
-
Save farhaven/0c8ca486520144b7f5dd to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # $OpenBSD: unbound.conf,v 1.4 2014/04/02 21:43:30 millert Exp $ | |
| server: | |
| interface: 127.0.0.1 | |
| interface: ::1 | |
| access-control: 0.0.0.0/0 refuse | |
| access-control: 127.0.0.0/8 allow | |
| access-control: ::0/0 refuse | |
| access-control: ::1 allow | |
| hide-identity: no | |
| hide-version: no | |
| # Uncomment to enable DNSSEC validation. | |
| # | |
| #auto-trust-anchor-file: "/var/unbound/db/root.key" | |
| # Serve zones authoritatively from Unbound to resolver clients. | |
| # Not for external service. | |
| # | |
| #local-zone: "local." static | |
| #local-data: "mycomputer.local. IN A 192.0.2.51" | |
| #local-zone: "2.0.192.in-addr.arpa." static | |
| #local-data-ptr: "192.0.2.51 mycomputer.local" | |
| # UDP EDNS reassembly buffer advertised to peers. Default 4096. | |
| # May need lowering on broken networks with fragmentation/MTU issues, | |
| # particularly if validating DNSSEC. | |
| # | |
| #edns-buffer-size: 1480 | |
| # Use TCP for "forward-zone" requests. Useful if you are making | |
| # DNS requests over an SSH port forwarding. | |
| # | |
| #tcp-upstream: yes | |
| local-zone: "64.31.172.in-addr.arpa." nodefault | |
| local-zone: "65.31.172.in-addr.arpa." nodefault | |
| local-zone: "22.172.in-addr.arpa." nodefault | |
| local-zone: "23.172.in-addr.arpa." nodefault | |
| local-zone: "d.f.ip6.arpa." nodefault | |
| forward-zone: | |
| name: "dn42" | |
| forward-addr: 172.22.0.53 | |
| forward-zone: | |
| name: "hack" | |
| forward-addr: 172.22.0.53 | |
| forward-zone: | |
| name: "c3pb.hack" | |
| forward-addr: 172.31.64.1 | |
| forward-zone: | |
| name: "22.172.in-addr.arpa" | |
| forward-addr: 172.22.0.53 | |
| forward-zone: | |
| name: "23.172.in-addr.arpa" | |
| forward-addr: 172.22.0.53 | |
| forward-zone: | |
| name: "d.f.ip6.arpa" | |
| forward-addr: 172.22.0.53 | |
| # Use an upstream forwarder (recursive resolver) for specific zones. | |
| # Example addresses given below are public resolvers valid as of 2014/03. | |
| # | |
| forward-zone: | |
| name: "." # use for ALL queries | |
| forward-addr: 74.82.42.42 # he.net | |
| forward-addr: 2001:470:20::2 # he.net v6 | |
| forward-addr: 8.8.8.8 # google.com | |
| forward-addr: 2001:4860:4860::8888 # google.com v6 | |
| forward-addr: 208.67.222.222 # opendns.com | |
| forward-first: yes # try direct if forwarder fails |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment