Hi folks,
I've seen a lot of home routers, mainly ZTE and D-Link, being attacked and
having their LAN DNS changed to random servers with malicious intent. I am
redirecting requests to those servers into my Unbound machine and I can see the
requests flow through tcpdump, however I can't get Unbound to reply.
I've set ip-freebind, but I can only get Unbound to reply if I also set the
address in an interface, but this isn't practical given that I'd have to know
all malicious DNS on the web and maintain a list of them on my interfaces.
Have anyone done anything similar and got it working?
