Hi,
Unbound 1.6.2 is available:
https://www.unbound.net/downloads/unbound-1.6.2.tar.gz
sha256 1a323d72c32180b7141c9e6ebf199fc68a0208dfebad4640cd2c4c27235e3b9c
pgp https://www.unbound.net/downloads/unbound-1.6.2.tar.gz.asc
This release has a couple of new features and a list of bug fixes.
trustanc
Ralph Dolmans via Unbound-users:
Are you sure you are not looking at subqueries generated by Unbound,
like root priming queries or queries for the DNSKEY? We do not add ECS
data to these queries.
found it!
(for queries send to ipv4 as well as ipv6 name servers)
and, surprise:
the data aren't
Hi Andreas,
Are you sure you are not looking at subqueries generated by Unbound,
like root priming queries or queries for the DNSKEY? We do not add ECS
data to these queries.
I do not think we should document the any address case. Sending (privacy
sensitive) ECS data to all nameservers does not s
W.C.A. Wijngaards via Unbound-users:
Thanks for the bugreport, I've added coded for the dnstap and dnscrypt
variables, for unbound-checkconf and unbound-control. The fix is not
for 1.6.2 because it is in release, but for 1.6.3 (you can get it from
the code repository).
Thanks Wouter,
I may
Ralph Dolmans via Unbound-users:
Any chance that the nameservers Unbound is sending queries to are not on
the ECS whitelist (send-client-subnet)? Unbound only sends ECS data to
whitelisted addresses.
Ralf.
2000::/3 should cover any IPv6 nameserver.
just added "send-client-subnet: 0.0.0.0/0"
Hi Andreas,
On 20/04/17 14:38, A. Schulze via Unbound-users wrote:
> Hello,
>
> unbound-checkconf /path/to/unbound.con -o [option] should echo the option
> value.
> That happen for all options valid in "server:" section as well as in
> "control:" section.
>
> But if I check for "dnstap-enable"
Hi Andreas,
Any chance that the nameservers Unbound is sending queries to are not on
the ECS whitelist (send-client-subnet)? Unbound only sends ECS data to
whitelisted addresses.
Regards,
-- Ralph
On 24-04-17 10:43, A. Schulze via Unbound-users wrote:
>
> W.C.A. Wijngaards via Unbound-users:
>
W.C.A. Wijngaards via Unbound-users:
Unbound 1.6.2rc1 maintainers prerelease is available:
- Merge EDNS Client subnet implementation from feature branch into main
branch, using new EDNS processing framework.
Hello,
I have added to unbound.conf:
server:
module-config: "subnetcache v
Hi Joris,
Unbound 1.6.0 introduced CNAME based redirects using local-data
elements. It that what you are looking for?
Something like:
local-zone: malwaredomains.com redirect
local-data: "malwaredomains.com. CNAME sorry.mydomain.tld."
Regards,
-- Ralph
On 21-04-17 18:24, Joris L. via Unbound-use