Maintained by: NLnet Labs

prevent unbound from attempting to contact root servers?

Daisuke HIGASHI
Thu Nov 17 17:40:12 CET 2016


> I just want unbound to blindly forward all queries to our
> local recursive resolvers.  That's it.

    I believe that Unbound is too intelligent to be dumb DNS forwarder,
and concluded that we should use a caching-forwarder-only software
(dnsmasq for example) if we want a such thing.

My favorite DNS caching forwarder is dnsdist configured to be
forwarder with packet cache like this:

-- dnsdist.conf
newServer({address="8.8.8.8", pool="dns"})
pc = newPacketCache(100000)
getPool("dns"):setCache(pc)
addAction(AllRule(), PoolAction("dns"))

--
 Daisuke Higashi