RPZ zone is this config correct?

RayG rgsub1 at btinternet.com
Fri Oct 16 10:35:42 UTC 2020



There has been a problem with the mail server at nlnetlabs it seems. If you
look at the date of the item below you will see it was sent on the 19th
September, it has only just arrived at the list.


So apologies for any others that have just arrived in the list.


It seems that whatever was causing the issue has now been fixed.


I understand that nlnetlabs also changed their e-mail provider recently so
there may have been some teething issues.




From: RayG <rgsub1 at btinternet.com> 
Sent: 19 September 2020 16:55
To: unbound-users at lists.nlnetlabs.nl
Subject: RPZ zone is this config correct?


I have created the following RPZ entry for unbound and added respip to the
module configuration.



     name: "rpz.urlhaus.abuse.ch."

     zonefile: "c:\programdata\unbound\logs\URLHaus.rpz"

     url: https://urlhaus.abuse.ch/downloads/rpz

     rpz-log: yes

     rpz-log-name: "URLHausRPZ"


If I understand things correctly unbound should fetch the zone file using
the URL and store the data in the zonefile. I created an empty zone file but
it is not being populated by unbound. I cannot see any relevant issues in
the log file.  I also do not (have not yet) seen any entries in the log file
with the appended log name item.


Do I have the correct configuration and understanding?


Following on would it be correct to add these masters to the configuration:







C:\>dig urlhaus.abuse.ch.


; <<>> DiG 9.16.6 <<>> urlhaus.abuse.ch.

;; global options: +cmd

;; Got answer:

;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 1870

;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 0, ADDITIONAL: 1



; EDNS: version: 0, flags:; udp: 4096


;urlhaus.abuse.ch.              IN      A



urlhaus.abuse.ch.       3037    IN      CNAME   p2.shared.global.fastly.net.

p2.shared.global.fastly.net. 29 IN      A

p2.shared.global.fastly.net. 29 IN      A

p2.shared.global.fastly.net. 29 IN      A

p2.shared.global.fastly.net. 29 IN      A





-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.nlnetlabs.nl/pipermail/unbound-users/attachments/20201016/7fc95af5/attachment.htm>

More information about the Unbound-users mailing list