dns: switch over to systemd for the host

this changes unbound to listen to 127.0.0.150 (150 is roman CL) we cannot only bind on docker bridge because unbound is relied upon for the initial domain setup. docker itself is only initialized when the platform initializes
2024-04-28 11:18:37 +02:00
parent 608ce53e7d
commit cd5cae33ce
7 changed files with 13 additions and 11 deletions
--- a/scripts/init-ubuntu.sh
+++ b/scripts/init-ubuntu.sh
@@ -97,6 +97,7 @@ apt-get -y install --no-install-recommends \
    tzdata \
    unattended-upgrades \
    unbound \
+    unbound-anchor \
    unzip \
    whois \
    xfsprogs
@@ -190,10 +191,6 @@ systemctl disable systemd-resolved || true
 # on vultr, ufw is enabled by default. we have our own firewall
 ufw disable || true

-# we need unbound to work as this is required for installer.sh to do any DNS requests. control-enable is for https://github.com/NLnetLabs/unbound/issues/806
-echo -e "server:\n\tinterface: 127.0.0.1\n\nremote-control:\n\tcontrol-enable: no\n" > /etc/unbound/unbound.conf.d/cloudron-network.conf
-systemctl restart unbound
-
 # Ubuntu 22 has private home directories by default (https://discourse.ubuntu.com/t/private-home-directories-for-ubuntu-21-04-onwards/)
 sed -e 's/^HOME_MODE\([[:space:]]\+\).*$/HOME_MODE\10755/' -i /etc/login.defs