reply for reserved TLD's
Phil Pennock
unbound-users+phil at spodhuis.org
Wed Oct 28 15:44:34 UTC 2020
On 2020-10-27 at 09:41 -0400, Sonic via Unbound-users wrote:
> What is considered the best reply from a local cache to avoid traffic
> to the root servers for domains that are reserved (for local use etc.,
> such as .home, .corp) or those you wish to block?
If that's the actual end goal, then answering a different question in
the hope that it's more useful to you:
RFC 8806 Running a Root Server Local to a Resolver
Appendix B.4. Example Configuration: Unbound 1.9
Secondary the root zone on the resolvers and the traffic to the roots
scales with what's legitimate and with update frequency, instead of with
all the garbage various systems spit out.
At which point, Unbound replies NXDOMAIN for _any_ unrecognized TLD not
otherwise configured in it.
More information about the Unbound-users
mailing list