FB-unbound
FreeBSD_10用 local_unbound 設定
FreeBSD 10 から bind から nboundとLDNS に変更されているので
start と stop
% service local_unbound start
DNSSEC非対応
/etc/unbound/conf.d/disable-dnssec.confを作成して
server: module-config: "iterator"
を作っておく
dig / nslookup
host と drill に変更
# drill www.iij.ad.jp ;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 20473 ;; flags: qr rd ra ; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 0 ;; QUESTION SECTION: ;; www.iij.ad.jp. IN A ;; ANSWER SECTION: www.iij.ad.jp. 300 IN A 202.232.2.164 ;; AUTHORITY SECTION: iij.ad.jp. 72892 IN NS dns1.iij.ad.jp. iij.ad.jp. 72892 IN NS dns0.iij.ad.jp. ;; ADDITIONAL SECTION: ;; Query time: 24 msec ;; SERVER: 192.168.12.181 ;; WHEN: Sun Nov 29 17:36:41 2015 ;; MSG SIZE rcvd: 85
!FreeBSD_10用 unbound 設定
/usr/ports/dns/unbound から make install
unbound.conf
server: interface: 0.0.0.0 access-control: 192.168.0.0/16 allow do-ip6: no
or
# This file is auto generated from "unbound.conf.s". server: verbosity: 1 interface: 127.0.0.1 interface: 192.168.12.182 outgoing-num-tcp: 1 incoming-num-tcp: 1 msg-buffer-size: 8192 msg-cache-size: 512k msg-cache-slabs: 2 num-queries-per-thread: 64 rrset-cache-size: 1m rrset-cache-slabs: 2 infra-cache-slabs: 2 infra-cache-numhosts: 512 do-ip6: no access-control: 127.0.0.1/32 allow access-control: 192.168.12.0/24 allow access-control: 0.0.0.0/0 deny pidfile: /var/run/unbound.pid harden-short-bufsize: yes harden-large-queries: yes key-cache-size: 64k key-cache-slabs: 2 neg-cache-size: 64k local-zone: "home.made." static local-data: "king.home.made. IN A 192.168.12.2" local-data: "fisher.home.made. IN A 192.168.12.6" local-data: "sparrow.home.made. IN A 192.168.12.100" local-data: "host1.home.made. IN A 192.168.12.101" local-data: "host2.home.made. IN A 192.168.12.102" local-data: "host3.home.made. IN A 192.168.12.103" local-data-ptr: "192.168.12.2 thyme.home.made." local-data-ptr: "192.168.12.6 nasubi.home.made." local-data-ptr: "192.168.12.100 host0.home.made." local-data-ptr: "192.168.12.101 host1.home.made." local-data-ptr: "192.168.12.102 host2.home.made." local-data-ptr: "192.168.12.103 host3.home.made." python: remote-control: forward-zone: name: "jp" name: "com" forward-addr: 10.121.0.11 forward-addr: 10.131.200.12 forward-addr: 192.168.12.1