On 07/06/2012 03:33 PM, Jan-Piet Mens wrote: >> So unbound asks dnsmasq for the address >> of "myhost.lan" as it is instructed by forward-zone, gets correct result (!), >> but then marks it bogus because it cannot establish trust chain. > > You'll need > > private-domain: "lan." > domain-insecure: "lan."
Wow, that was fast! After also adding "do-not-query-localhost: no" (and 'local-zone: "168.192.in-addr.arpa" nodefault' for the reverse zone) it all worked! Thanks a lot! Any chance to make these sort of tricks more apparent in the documentation? Eugene
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Unbound-users mailing list [email protected] http://unbound.nlnetlabs.nl/mailman/listinfo/unbound-users
