[Unbound-users] forward zone order
wouter at nlnetlabs.nl
Wed Jan 14 07:54:52 UTC 2015
-----BEGIN PGP SIGNED MESSAGE-----
On 01/14/2015 02:10 AM, Will Yardley wrote:
> On Tue, Jan 06, 2015 at 09:50:32PM -0800, Will Yardley wrote:
>> I had expected that the behavior would be to prefer the first in
>> the list, however, from a couple things I noticed today, I'm not
>> so sure.
>> My config is as follows:
>> forward-zone: name: "zen.spamhaus.org" forward-addr:
>> 127.0.0.1 at 3768 forward-addr: xx.xx.xx.xx
> I verified that a significant amount of traffic is being sent to
> the second forwarder. Short of using external software or setting
> up an internal load-balanced VIP, is there any way with unbound to
> prefer a specific forwarder (in this case, the local one), except
> as a failover?
> For DNSBL lookups, would I be better off using stub zones instead
> of forwarders (the dnsbl servers are authoritative), and would the
> behavior be any different then?
Yes a stub is better if they are authoritative, likely saves
processing for unbound. The behaviour is the same, it randomly
chooses, based on the ping-times of the servers. There is the
forward-first: option, but I am unsure if it does what you want
(disable the stub clause temporarily if the local ip address fails for
a minute or so).
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
-----END PGP SIGNATURE-----
More information about the Unbound-users