Am 20.08.2013 15:27, schrieb W.C.A. Wijngaards:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi Over,
On 08/20/2013 02:50 PM, Over Dexia wrote:
Am 20.08.2013 14:20, schrieb W.C.A. Wijngaards: Since I need the
unbound to serve information (gathered from internal servers) even
when the internet is unavailable, I probably have to disable
DNSSEC.
For this you should create lines for your localdomain(s):
domain-insecure: "local"
So that unbound does not have to go to the internet for dnssec for
your local domains, and then when internet is not available it does
not try to setup the chain of trust. It then uses DNSSEC for the
internet, but does not use DNSSEC for "local" names.
Fantastic. Thanks a lot! jo
_______________________________________________
Unbound-users mailing list
[email protected]
http://unbound.nlnetlabs.nl/mailman/listinfo/unbound-users
