Maintained by: NLnet Labs

[Unbound-users] return refused for any query except for explicitly configured local, stub or forwarded zones

Daisuke HIGASHI
Tue Jun 16 14:52:06 CEST 2015


Hi,

"transparent" local-zones will do the trick:

# ---
server:
  # <snip>

  # refuse all queries for any zone
  local-zone: "." refuse
  # ...except example.com
  local-zone: "example.com" transparent

# example.com stub zone
stub-zone:
  name: "example.com."
  stub-addr: 199.43.132.53
  stub-addr: 199.43.133.53

# disables root hints; this prevents query for root servers
stub-zone:
  name: "."

# ---

--
 Daisuke HIGASHI <daisuke.higashi at gmail.com>

2015-06-16 17:58 GMT+09:00 Mikolaj Kucharski <mikolaj at kucharski.name>:
> Hi,
>
> I'm wondering is it possible to configure Unbound in such a way that
> it will return REFUSED for any query, except zones which are explicitly
> configured in the config file.