Maintained by: NLnet Labs

[Unbound-users] forward-zone: for reverse?

Robert Edmonds
Wed Sep 26 19:35:26 CEST 2012


Paul Wouters wrote:
> I've been looking at configuring a forward-zone: to punt
> 10.in-addr.arpa. to an internal server, but it seems unbound
> is giving its own builtin answer:
> 
> 10.in-addr.arpa.	10800	IN	SOA	localhost.  nobody.invalid. 1 3600 1200 604800 10800
> 
> I've tried specifying it directly into unbound.conf:
> 
> forward-zone:
>         name: "10.in-addr.arpa."
>         forward-addr: 10.1.2.3
> 
> 
> The man page says forward-zone is always allowed to contain private data
> from RFC1918.
> 
> Am I missing something?

i think you also need to turn off the builtin AS112 zone content.
something like this?

server:
    local-zone: "10.in-addr.arpa" nodefault

forward-zone:
    name: "10.in-addr.arpa."
    forward-addr: 10.1.2.3

-- 
Robert Edmonds
edmonds at debian.org