Unbound is a validating, recursive, and caching DNS resolver.
The architectures supported by this image are:
linux/amd64linux/arm64linux/ppc64lelinux/s390xlinux/arm/v7linux/arm/v6
Simply pulling klutchell/unbound should retrieve the correct image for your arch.
# display available commands
make help
# clean dangling images, containers, and build instances
make clean
# build and test a local image
make
# cross-build on supported platforms with buildx
make buildx EXTRA_OPTS="--load --platform=linux/arm/v7"NLnet Labs documentation: https://nlnetlabs.nl/documentation/unbound/
# print general usage
docker run --rm klutchell/unbound -h
# run a recursive dns server on host port 53
docker run -p 53:5053/tcp -p 53:5053/udp klutchell/unbound
# run unbound server with configuration mounted from a host directory
docker run --name unbound -p 53:5053/udp -v /path/to/config:/opt/unbound/etc/unbound klutchell/unbound
# generate a root trust anchor for DNSSEC validation
# assumes your existing container is named 'unbound' as in the example above
docker exec unbound unbound-anchor -vPlease note the following if you are using a custom configuration file:
chrootandusernameare not supported as the service is already running asnobody:nogroupauto-trust-anchor-fileshould be omitted or set toroot.key- any additional paths should be relative to
/var/run/unbound
Kyle Harding: https://klutchell.dev
Please open an issue or submit a pull request with any features, fixes, or changes.
Original software is by NLnet Labs: https://github.com/NLnetLabs/unbound
- klutchell/unbound: MIT License
- unbound: BSD 3-Clause "New" or "Revised" License
- ldns: BSD 3-Clause "New" or "Revised" License
- openssl: OpenSSL License & Original SSLeay License
- libevent: BSD License
- libexpat: MIT License