From d45927cdf45ee8c21aae8d9216838f2a3601e92d Mon Sep 17 00:00:00 2001
From: Girish Ramakrishnan <girish@cloudron.io>
Date: Thu, 12 Jan 2017 21:25:38 -0800
Subject: [PATCH] unbound: listen on 0.0.0.0

---
 setup/start.sh | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/setup/start.sh b/setup/start.sh
index ef53ca67d..e8fd2d4fb 100755
--- a/setup/start.sh
+++ b/setup/start.sh
@@ -161,7 +161,8 @@ systemctl enable --now cron
 
 # DO uses Google nameservers by default. This causes RBL queries to fail (host 2.0.0.127.zen.spamhaus.org)
 # We do not use dnsmasq because it is not a recursive resolver and defaults to the value in the interfaces file (which is Google DNS!)
-echo -e "server:\n\tinterface: 172.18.0.1\n\tinterface: 127.0.0.1\n\taccess-control: 127.0.0.1 allow\n\taccess-control: 172.18.0.1/16 allow" > /etc/unbound/unbound.conf.d/cloudron-network.conf
+# We listen on 0.0.0.0 because there is no way control ordering of docker (which creates the 172.18.0.0/16) and unbound
+echo -e "server:\n\tinterface: 0.0.0.0\n\taccess-control: 127.0.0.1 allow\n\taccess-control: 172.18.0.1/16 allow" > /etc/unbound/unbound.conf.d/cloudron-network.conf
 systemctl enable unbound
 systemctl restart unbound