On 2022-05-04 20:37, [email protected] wrote:
Quad 9 uses a number of DNS servers with different names but I guess
that isn't good enough. I had set up unbound on the VPS used for my VPN
when I set up dnscrypt. I don't recall why I pulled it. I am going to
give systemd resolved a try. I suspect if it is a good replacement for
unbound it would be praised as such. But the install is a low effort so
It is not a replacement for unbound. Just like dncrypt, it requires
you to use upstream forwarders, of the kind which Spamhaus and other
DNSBL services will block.
it is worth a shot.
Nope.
Unbound or BIND named will work. The latter is as simple as clearing
out your distro-provided named.conf(5) file. With default settings it
will do the external configuration you need.
The only configuration I'd recommend for named is:
options { listen-on { 127.0.0.1; }; listen-on-v6 { none; }; };
Remove resolv.conf or point it at "nameserver 127.0.0.1" and start
named. That's it!
Of course unbound or pdns-recursor should be similarly easy, but I'll
leave that to their users to explain.
While configuration of DNS software is basically off topic here, you
cannot expect to run a modern MTA without it.
--
http://rob0.nodns4.us/
