Differences

This shows you the differences between two versions of the page.

--- computing:unbounddns [2024/11/01 04:29] – oemb1905
+++ computing:unbounddns [2025/04/04 03:23] (current) – oemb1905
@@ Line 113: / Line 113: @@
   <edns-packet-max=1232>
-The last step is configuring the unbound server in the pihole GUI. Alternately, you can do this without a pihole by simply specifying this address as your WAN's upstream DNS server in openWRT.
+The last step is configuring the unbound server in the pihole GUI. Alternately, you can do this without a pihole by simply specifying this address as your WAN's upstream DNS server in openWRT. Alright, and in case you don't need LAN-based DNS, but just want a public facing virtual appliance to use its own DNS, just install unbound and enter the following in ''/etc/unbound/unbound.conf'':
- --- //[[webmaster@haacksnetworking.org|oemb1905]] 2024/11/01 03:59//
+  server:
+      interface: 127.0.0.1
+      cache-max-ttl: 14400
+      cache-min-ttl: 1200
+      num-threads: 4
+      msg-cache-slabs: 8
+      rrset-cache-slabs: 8
+      infra-cache-slabs: 8
+      key-cache-slabs: 8
+      rrset-cache-size: 256m
+      msg-cache-size: 128m
+      #prefetch: yes
+      harden-dnssec-stripped: yes
+      use-syslog: yes
+      aggressive-nsec: yes
+      hide-identity: yes
+      hide-version: yes
+      use-caps-for-id: yes
+      do-tcp: yes
+      do-udp: yes
+Then, just add ''nameserver 127.0.0.1'' to /etc/resolv.conf. This latter step only works on classic/minimal Debian. Use netplan properly and/or resolvconf package and the correct ''.d'' directory if not using proper DNS management.
+ --- //[[alerts@haacksnetworking.org|oemb1905]] 2025/04/04 03:20//

Haack's Wiki

User Tools

Site Tools

Differences

Page Tools