Help with getting Unbound to use DoH (DNS over HTTPS)

Ronald Nutter ron.nutter at
Mon Feb 22 16:36:22 UTC 2021

I have been using Unbound with DoT but would like to see about moving over
to HTTPS.  Have been looking for how to do this but what I have found so
far doesnt give me the information I am looking for.  I have some
experience with Linux but am no where near being a programmer.

Here is what I have found so far -

# Since I installed using apt, figure that I should uninstall it first

sudo apt remove unbound

# Download/compile unbound to use DoH
tar -zxvf unbound-1.13.1.tar.gz (missing step?)
./configure --with-libnghttp2
make install

#configuring unbound to use DoH
interface: at 443
tls-service-key "key.pem"
tls-service-pem: "cert.pem"

# Adapted from TLS/DoT instructions, so not sure about this
    name: "."
    forward-tls-upstream: yes
    # Cloudflare DNS
    forward-addr: 2606:4700:4700::1111 at
    forward-addr: at
    forward-addr: 2606:4700:4700::1001 at
    forward-addr: at

Is this correct ?
Would appreciate any pointers in helping get this to work

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the Unbound-users mailing list