Help Needed with Unbound

Yogesh Sharma yks0000 at gmail.com
Wed Jan 23 05:15:47 UTC 2019 

I am able to test 2nd scenario and all resolution will be done by dns
server as mentioned in name: "." (dot). Can some please guide how can we
route few zones to specific dns server and rest all to google dns.

However, first one is still a problem, when I am using

forward-zone:
    name: "."
    forward-addr: 127.0.0.1 at 5353

it appends search string from resolv.conf.

Eg: is search string is internal.localhost then All example.com name is
changing to example.com.internal.localhost.

if I put example.com. (dot at the end) then it return server fail.





*Thanks & Regards,Yogesh Sharma*


On Wed, Jan 23, 2019 at 9:48 AM Yogesh Sharma <yks0000 at gmail.com> wrote:

> Hi ,
>
> Any suggestion.
>
>
>
>
> *Thanks & Regards,Yogesh Sharma  | yks0000 at gmail.com <yks0000 at gmail.com> |
> LinkedIn <http://linkedin.com/in/yks0000> | Portal
> <https://yogeshsharma.me/>*
>
>
> On Tue, Jan 22, 2019 at 11:44 PM Yogesh Sharma <yks0000 at gmail.com> wrote:
>
>> Hi Team,
>>
>> I am new to Unbound and need some help.
>>
>> I need to forward all of request to local dnsmasq running on
>> 127.0.0.1 at 5353.
>>
>> Once I do that, I see all lookup are suffixed with search string as
>> present in /etc/resolv.conf and return server fail. If I do resolve by
>> explicitly putting "." (dot) at the end, even though I get server fail.
>>
>>
>> Version: 1.6.6
>>
>> Config:
>>
>>
>> server:
>>     verbosity: 1
>>     username: root
>>     interface: 127.0.0.1
>>     port: 53
>>     chroot: ""
>>     do-ip4: yes
>>     do-udp: yes
>>     do-tcp: yes
>>     hide-identity: yes
>>     hide-version: yes
>>     msg-cache-size: 50m
>>     msg-cache-slabs: 4
>>     rrset-cache-size: 100m
>>     rrset-cache-slabs: 4
>>     cache-min-ttl: 300
>>     cache-max-negative-ttl: 300
>>     access-control: 0.0.0.0/0 allow
>>     logfile: "/var/log/unbound/unbound.log"
>>     log-identity: root
>>     log-queries: yes
>>     log-replies: yes
>>     pidfile: "/var/log/unbound/unbound.pid"
>>     prefetch: yes
>>
>> forward-zone:
>>     name: "."
>>     forward-addr: 127.0.0.1 at 5353
>>
>>
>>
>> 2nd Question:
>>
>> considering below forward-zone configuration, will all of  name lookup
>> will be forwarded to open dns servers (208.67.222.222/208.67.220.220) or
>> it will send only those name server which are not part of example.com
>> and example.org
>>
>> forward-zone:
>>     name: "."
>>     forward-addr: 208.67.222.222
>>     forward-addr: 208.67.220.220
>>
>> forward-zone:
>>     name: "example.com"
>>     forward-addr: 8.8.8.8
>>
>> forward-zone:
>>     name: "example.org"
>>     forward-addr: 8.8.4.4
>>
>>
>> Thanks for help.
>>
>>
>>
>>
>>
>>
>> *Thanks & Regards,Yogesh Sharma*
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.nlnetlabs.nl/pipermail/unbound-users/attachments/20190123/7f4231b9/attachment.htm>

More information about the Unbound-users mailing list