Current private-address default?
Paul Wouters
paul at nohats.ca
Mon Apr 25 16:47:15 UTC 2022
On Apr 25, 2022, at 15:12, Fredrik Pettai via Unbound-users <unbound-users at lists.nlnetlabs.nl> wrote:
>
> Hi,
>
> It was some years since this option was added (unbound 1.5.7 I think).
> As per the man page for unbound.conf:
>
> ...skipping...
> private-address: <IP address or subnet>
> Give IPv4 of IPv6 addresses or classless subnets. These are
> addresses on your private network, and are not allowed to be
> returned for public internet names. Any occurrence of such
> addresses are removed from DNS answers.
>
> Q: Are there any plans to update this and add the RFC1918 addresses
> as non-resolvable by default ?
I hope not. I think that would lead to many unexpected failures. I think this is an item that the DNS admin should enable if they are confident.
Additionally, if using unbound on laptops and you getting on via hotspots this would break badly.
Paul
More information about the Unbound-users
mailing list