Mercurial > repos > other > Puppet

view common/unbound.conf-ibbpi @ 476:b0531370e183

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Avoid fully controllable rewrite prefix Apache doesn't guarantee that rewrites are URLs or paths within the prefix and will process them rather than error, so close a fully controllable rewrite prefix: https://blog.orange.tw/2024/08/confusion-attacks-en.html?m=1
author IBBoard <dev@ibboard.co.uk>
date Sun, 11 Aug 2024 13:29:59 +0100
parents f4ed14153cda
children 2c3e745be8d2
line wrap: on
line source

# Based on https://www.nlnetlabs.nl/documentation/unbound/howto-setup/
# Note: If the upstream DNS stops synthesising IPv6 records for IPv4-only
# domains due to honouring DNSSEC then we need to go back to doing DNS64 here
server:
	interface: 127.0.0.1
	interface: ::1
	access-control: 127.0.0.0/24 allow
	access-control: ::1 allow
        verbosity: 1

forward-zone:
        name: "."
        forward-addr: 2a00:1098:0:80:1000:3b:0:1
        forward-addr: 2a00:1098:0:82:1000:3b:0:1