jjkiers/cloudron-box
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
Files
ab0f8fc08163b6e00a4e6f414003d2d1a20d8c7d
cloudron-box/setup/start/unbound/unbound.conf
Girish Ramakrishnan 6561a40f2c unbound: use ipv4 on older ubuntu 
SpamHaus rejects queries from ipv6.
unbound does not work on ipv6 only servers without do-ip6: true
prefer-ip4 only works on ubuntu 24

this leads to a situation that we cannot support ipv6 only servers with
older ubuntu
2025-06-28 17:56:09 +02:00

28 lines
948 B
Plaintext
Raw Blame History

# Unbound is used primarily for RBL queries (host 2.0.0.127.zen.spamhaus.org)
# We cannot use dnsmasq because it is not a recursive resolver and defaults to the value in the interfaces file (which is Google DNS!)
server:
port: 53
interface: 127.0.0.150
interface: 172.18.0.1
ip-freebind: yes
access-control: 127.0.0.1 allow
access-control: 172.18.0.1/16 allow
cache-max-negative-ttl: 30
cache-max-ttl: 300
# Prefer IPv4 outbound queries. Spamhaus often rejects queries from IPv6 addresses
# without this, unbound does not start on IPv6 only servers
do-ip6: yes
# this setting only works with ubuntu 24 and unbound >= 1.19.2
prefer-ip4: yes
# enable below for logging to journalctl -u unbound
# verbosity: 5
# log-queries: yes
# https://github.com/NLnetLabs/unbound/issues/806
remote-control:
control-enable: no
Reference in New Issue View Git Blame Copy Permalink