RE: [SUSPECT EMAIL: No Reputation] Re: unbound as root name server

Thu, 07 Apr 2022 12:13:19 -0700 

I think I mean, can unbound be the "root server" on an isolated network.
That will resolve custom created URL's without external name servers.



You can use local-data and local-zone lines in unbound.conf to provide 
your own data which so, yes.  You'll want access-control lines to tell it 
that it's OK to send answers to addresses on your network.



I use local-data and local-zone on my home netmwork to give names to 
devices behind my NAT router and to shortcircuit queries to some ad 
networks.


R's,
John


Teledyne Confidential; Commercially Sensitive Business Data


Still too late.



-----Original Message-----
From: John Levine <[email protected]>
Sent: Wednesday, April 6, 2022 3:45 PM
To: [email protected]
Cc: Modster, Anthony <[email protected]>
Subject: [SUSPECT EMAIL: No Reputation] Re: unbound as root name server

---External Email---
CAUTION: This email originated from a new mail server that has not been online 
long enough to receive a reputation rating. Many phishing attempts originate 
from servers fitting this profile. Unless you were expecting this email and are 
confident that it is legitimate, please delete it immediately.

It appears that Modster, Anthony via Unbound-users 
<[email protected]> said:

-=-=-=-=-=-

Hello

Are there any tutorials on setting up unbound as a "root name server" ?


Assuming you mean you want it to keep a local copy of the root that it uses 
rather than the regular root servers when resolving queries, add this to 
unbound.conf:

# FOR ROOT LOOPBACK
auth-zone:
      name: "."
      primary: 192.228.79.201  # b.root-servers.net
      primary: 192.33.4.12     # c.root-servers.net
      primary: 192.5.5.241     # f.root-servers.net
      primary: 192.112.36.4    # g.root-servers.net
      primary: 193.0.14.129    # k.root-servers.net
      primary: 192.0.47.132    # xfr.cjr.dns.icann.org
      primary: 192.0.32.132    # xfr.lax.dns.icann.org
      primary: 2001:500:84::b  # b.root-servers.net
      primary: 2001:500:2f::f  # f.root-servers.net
      primary: 2001:7fd::1     # k.root-servers.net
      primary: 2620:0:2830:202::132   # xfr.iad.dns.icann.org
      primary: 2620:0:2d0:202::132   # xfr.lax.dns.icann.org
      fallback-enabled: yes
      for-downstream: no
      for-upstream: yes
R's,
John


Teledyne Confidential; Commercially Sensitive Business Data


Too late.






















					Reply via email to