Benutzer-Werkzeuge

Webseiten-Werkzeuge


dns:dns_mit_unbound

Unterschiede

Hier werden die Unterschiede zwischen zwei Versionen angezeigt.

Link zu dieser Vergleichsansicht

Beide Seiten der vorigen RevisionVorhergehende Überarbeitung
Nächste Überarbeitung
Vorhergehende Überarbeitung
dns:dns_mit_unbound [2024-07-06 23:17:54] manfreddns:dns_mit_unbound [2024-07-07 02:33:56] (aktuell) manfred
Zeile 1: Zeile 1:
 ====== DNS mit Unbound ====== ====== DNS mit Unbound ======
 +
 +  > apt install unbound
 +  > systemctl enable unbound
 +  > systemctl start unbound
 +  > systemctl status unbound
  
 <code ini /etc/unbound/unbound.conf.d/default.conf> <code ini /etc/unbound/unbound.conf.d/default.conf>
Zeile 6: Zeile 11:
  
  port: 53  port: 53
- tls-port: 853+ #tls-port: 853
  interface-automatic: yes  interface-automatic: yes
- interface-automatic-ports: "53 853"+ #interface-automatic-ports: "53 853
 + interface-automatic-ports: "53"
  
  do-ip4: yes  do-ip4: yes
Zeile 16: Zeile 22:
  do-udp: yes  do-udp: yes
  do-tcp: yes  do-tcp: yes
- 
- tls-system-cert: yes 
- #tls-cert-bundle: /etc/ssl/certs/ca-certificates.crt 
- tls-service-key: /etc/letsencrypt/live/example.com/privkey.pem 
- tls-service-pem: /etc/letsencrypt/live/example.com/fullchain.pem 
  
  use-syslog: yes  use-syslog: yes
Zeile 30: Zeile 31:
  log-servfail: yes  log-servfail: yes
  
 + # apt install dns-root-data
 + root-hints: /usr/share/dns/root.hints
  # curl -o /etc/unbound/root.hints https://www.internic.net/domain/named.cache  # curl -o /etc/unbound/root.hints https://www.internic.net/domain/named.cache
- root-hints: root.hints+ #root-hints: root.hints
  
  hide-identity: yes  hide-identity: yes
Zeile 54: Zeile 57:
  private-address: fd00::/8  private-address: fd00::/8
  private-address: fe80::/10  private-address: fe80::/10
 +
  private-address: 127.0.0.0/8  private-address: 127.0.0.0/8
  private-address: ::ffff:0:0/96  private-address: ::ffff:0:0/96
Zeile 59: Zeile 63:
  private-domain: fritz.box  private-domain: fritz.box
  domain-insecure: fritz.box  domain-insecure: fritz.box
- 
- access-control: 192.168.0.0/16 allow 
- access-control: 172.16.0.0/12 allow 
- access-control: 10.0.0.0/8 allow 
- access-control: fd00::/8 allow 
- access-control: fe80::/10 allow 
  
 forward-zone: forward-zone:
  name: fritz.box.  name: fritz.box.
- forward-addr: fd00::ca0e:14ff:feee:a467 + forward-addr: fd00::de15:c8ff:feb6:1e26 
- forward-addr: 10.0.0.1+ forward-addr: 192.168.1.254
  forward-no-cache: yes  forward-no-cache: yes
 </code> </code>
  
  
/home/http/wiki/data/attic/dns/dns_mit_unbound.1720307874.txt · Zuletzt geändert: von manfred