Hey, is there a way to do forward-zone but without revalidation of DNSSEC? I don't mean NTAs, but I'd like to either trust the forward-host(s), or do DNSSEC validation in Unbound if the forwarder doesn't work. Am I missing something or it's not supported?
Thanks! Marek
