-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathunbound.conf
113 lines (110 loc) · 2.77 KB
/
unbound.conf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
server:
## verbosity number, 0 is least verbose. 1 is default.
verbosity: 1
statistics-interval: 60
# number of threads to create. 1 disables threading.
# num-threads: 1
#module-config: "iterator"
interface: 0.0.0.0
port: 53
outgoing-range: 2048
so-rcvbuf: 4m
so-sndbuf: 4m
so-reuseport: yes
msg-cache-size: 50m
num-queries-per-thread: 1024
rrset-cache-size: 100m
do-ip6: no
access-control: 127.0.0.0/8 allow
access-control: 172.16.0.0/12 allow
access-control: 8.43.208.0/20 allow
access-control: 8.40.217.0/24 allow
chroot: ""
username: "unbound"
directory: "/etc/unbound"
use-syslog: yes
pidfile: "/run/unbound.pid"
val-log-level: 2
local-zone: "16.172.in-addr.arpa." nodefault
local-zone: "17.172.in-addr.arpa." nodefault
local-zone: "18.172.in-addr.arpa." nodefault
local-zone: "19.172.in-addr.arpa." nodefault
local-zone: "20.172.in-addr.arpa." nodefault
local-zone: "21.172.in-addr.arpa." nodefault
local-zone: "22.172.in-addr.arpa." nodefault
local-zone: "23.172.in-addr.arpa." nodefault
remote-control:
control-enable: yes
stub-zone:
name: "at.quakecon.org."
stub-addr: 172.16.1.100
stub-addr: 172.16.1.101
stub-prime: no
stub-first: no
stub-zone:
name: "16.172.in-addr.arpa."
stub-addr: 172.16.1.100
stub-addr: 172.16.1.101
stub-prime: no
stub-first: no
stub-zone:
name: "17.172.in-addr.arpa."
stub-addr: 172.16.1.100
stub-addr: 172.16.1.101
stub-prime: no
stub-first: no
stub-zone:
name: "18.172.in-addr.arpa."
stub-addr: 172.16.1.100
stub-addr: 172.16.1.101
stub-prime: no
stub-first: no
stub-zone:
name: "19.172.in-addr.arpa."
stub-addr: 172.16.1.100
stub-addr: 172.16.1.101
stub-prime: no
stub-first: no
stub-zone:
name: "20.172.in-addr.arpa."
stub-addr: 172.16.1.100
stub-addr: 172.16.1.101
stub-prime: no
stub-first: no
stub-zone:
name: "21.172.in-addr.arpa."
stub-addr: 172.16.1.100
stub-addr: 172.16.1.101
stub-prime: no
stub-first: no
stub-zone:
name: "22.172.in-addr.arpa."
stub-addr: 172.16.1.100
stub-addr: 172.16.1.101
stub-prime: no
stub-first: no
stub-zone:
name: "23.172.in-addr.arpa."
stub-addr: 172.16.1.100
stub-addr: 172.16.1.101
stub-prime: no
stub-first: no
# stub-zone:
# name: "example.org"
# stub-host: ns.example.com.
# Forward zones
# Create entries like below, to make all queries for 'example.com' and
# 'example.org' go to the given list of servers. These servers have to handle
# recursion to other nameservers. List zero or more nameservers by hostname
# or by ipaddress. Use an entry with name "." to forward all queries.
# If you enable forward-first, it attempts without the forward if it fails.
forward-zone:
name: "."
forward-addr: 4.2.2.1
forward-addr: 4.2.2.2
forward-addr: 209.244.0.3
forward-addr: 209.244.0.4
forward-first: no
# forward-zone:
# name: "example.org"
# forward-host: fwd.example.com