[SUSPECT EMAIL: No Reputation] Re: unbound as root name server

John R Levine johnl at taugh.com
Thu Apr 7 19:12:41 UTC 2022 

> I think I mean, can unbound be the "root server" on an isolated network.
> That will resolve custom created URL's without external name servers.

You can use local-data and local-zone lines in unbound.conf to provide 
your own data which so, yes.  You'll want access-control lines to tell it 
that it's OK to send answers to addresses on your network.

I use local-data and local-zone on my home netmwork to give names to 
devices behind my NAT router and to shortcircuit queries to some ad 
networks.

R's,
John

> Teledyne Confidential; Commercially Sensitive Business Data

Still too late.

>
> -----Original Message-----
> From: John Levine <johnl at taugh.com>
> Sent: Wednesday, April 6, 2022 3:45 PM
> To: unbound-users at nlnetlabs.nl
> Cc: Modster, Anthony <Anthony.Modster at Teledyne.com>
> Subject: [SUSPECT EMAIL: No Reputation] Re: unbound as root name server
>
> ---External Email---
> CAUTION: This email originated from a new mail server that has not been online long enough to receive a reputation rating. Many phishing attempts originate from servers fitting this profile. Unless you were expecting this email and are confident that it is legitimate, please delete it immediately.
>
> It appears that Modster, Anthony via Unbound-users <Anthony.Modster at Teledyne.com> said:
>> -=-=-=-=-=-
>>
>> Hello
>>
>> Are there any tutorials on setting up unbound as a "root name server" ?
>
> Assuming you mean you want it to keep a local copy of the root that it uses rather than the regular root servers when resolving queries, add this to unbound.conf:
>
> # FOR ROOT LOOPBACK
> auth-zone:
>       name: "."
>       primary: 192.228.79.201  # b.root-servers.net
>       primary: 192.33.4.12     # c.root-servers.net
>       primary: 192.5.5.241     # f.root-servers.net
>       primary: 192.112.36.4    # g.root-servers.net
>       primary: 193.0.14.129    # k.root-servers.net
>       primary: 192.0.47.132    # xfr.cjr.dns.icann.org
>       primary: 192.0.32.132    # xfr.lax.dns.icann.org
>       primary: 2001:500:84::b  # b.root-servers.net
>       primary: 2001:500:2f::f  # f.root-servers.net
>       primary: 2001:7fd::1     # k.root-servers.net
>       primary: 2620:0:2830:202::132   # xfr.iad.dns.icann.org
>       primary: 2620:0:2d0:202::132   # xfr.lax.dns.icann.org
>       fallback-enabled: yes
>       for-downstream: no
>       for-upstream: yes
> R's,
> John
>
>> Teledyne Confidential; Commercially Sensitive Business Data
>
> Too late.

More information about the Unbound-users mailing list