1586,8 → 1586,6 |
[ -d /etc/unbound/conf.d/blackhole ] || mkdir /etc/unbound/conf.d/blackhole |
[ -d /var/log/unbound ] || { mkdir /var/log/unbound; chown unbound:unbound /var/log/unbound; } |
[ -e /etc/unbound/unbound.conf.default ] || cp /etc/unbound/unbound.conf /etc/unbound/unbound.conf.default |
# Local static DNS configuration |
[ -e /etc/unbound/conf.d/common/local-dns/global.conf ] || touch /etc/unbound/conf.d/common/local-dns/global.conf |
|
# Forward zone configuration file for all unbound dns servers |
cat << EOF > /etc/unbound/conf.d/common/forward-zone.conf |
1616,12 → 1614,9 |
# Configuration file of ALCASAR main domains for $INTIF |
cat << EOF > /etc/unbound/conf.d/common/local-dns/${INTIF}.conf |
server: |
local-zone: "$HOSTNAME.$DOMAIN" static |
local-zone: "$DOMAIN" static |
local-data: "$HOSTNAME.$DOMAIN A $PRIVATE_IP" |
local-zone: "$HOSTNAME" static |
local-data: "$HOSTNAME A $PRIVATE_IP" |
local-zone: "$DOMAIN." static |
local-data: "$DOMAIN. A" |
local-data-ptr: "$PRIVATE_IP $HOSTNAME.$DOMAIN" |
EOF |
|
# Configuration file for lo of forward unbound |
1629,13 → 1624,11 |
server: |
interface: 127.0.0.1@53 |
access-control-view: 127.0.0.1/8 lo |
|
view: |
name: "lo" |
local-zone: "$HOSTNAME.$DOMAIN" static |
local-zone: "$DOMAIN" static |
local-data: "$HOSTNAME.$DOMAIN A 127.0.0.1" |
local-zone: "$HOSTNAME" static |
local-data: "$HOSTNAME A 127.0.0.1" |
local-data-ptr "127.0.0.1 $HOSTNAME.$DOMAIN" |
view-first: yes |
EOF |
|
1644,17 → 1637,12 |
server: |
interface: ${PRIVATE_IP}@53 |
access-control-view: $PRIVATE_NETWORK_MASK $INTIF |
|
view: |
name: "$INTIF" |
local-zone: "$HOSTNAME.$DOMAIN" static |
local-data: "$HOSTNAME.$DOMAIN A $PRIVATE_IP" |
local-zone: "$HOSTNAME" static |
local-data: "$HOSTNAME A $PRIVATE_IP" |
view-first: yes |
EOF |
|
# Configuration file for forward unbound |
# Configuration file for main unbound |
cat << EOF > /etc/unbound/unbound.conf |
server: |
verbosity: 1 |
1730,7 → 1718,6 |
server: |
interface: ${PRIVATE_IP}@56 |
access-control-view: $PRIVATE_NETWORK_MASK $INTIF |
|
view: |
name: "$INTIF" |
local-zone: "." redirect |