unbound: Add secondry DHCP server and fix interface binding
Unbound can't bind to CARP interfaces without explicit definition.
This commit is contained in:
parent
d4a29bb758
commit
7c2522a8fb
2 changed files with 31 additions and 2 deletions
28
roles/unbound/files/unbound.conf.dna-gw02.home.foo.sh
Normal file
28
roles/unbound/files/unbound.conf.dna-gw02.home.foo.sh
Normal file
|
|
@ -0,0 +1,28 @@
|
||||||
|
|
||||||
|
server:
|
||||||
|
interface: 127.0.0.1
|
||||||
|
interface: ::1
|
||||||
|
interface: 172.20.20.10
|
||||||
|
interface: 172.20.21.2
|
||||||
|
|
||||||
|
|
||||||
|
access-control: 127.0.0.0/8 allow
|
||||||
|
access-control: ::1 allow
|
||||||
|
access-control: 172.20.20.0/22 allow
|
||||||
|
|
||||||
|
hide-identity: yes
|
||||||
|
hide-version: yes
|
||||||
|
|
||||||
|
prefetch: yes
|
||||||
|
unblock-lan-zones: yes
|
||||||
|
|
||||||
|
remote-control:
|
||||||
|
control-enable: yes
|
||||||
|
control-interface: /var/run/unbound.sock
|
||||||
|
|
||||||
|
auth-zone:
|
||||||
|
name: "home.foo.sh"
|
||||||
|
zonefile: "/var/unbound/db/home.foo.sh"
|
||||||
|
auth-zone:
|
||||||
|
name: "20.172.in-addr.arpa"
|
||||||
|
zonefile: "/var/unbound/db/20.172.in-addr.arpa"
|
||||||
|
|
@ -2,8 +2,9 @@
|
||||||
server:
|
server:
|
||||||
interface: 127.0.0.1
|
interface: 127.0.0.1
|
||||||
interface: ::1
|
interface: ::1
|
||||||
interface: 0.0.0.0
|
interface: 172.20.20.10
|
||||||
interface: ::0
|
interface: 172.20.21.1
|
||||||
|
|
||||||
|
|
||||||
access-control: 127.0.0.0/8 allow
|
access-control: 127.0.0.0/8 allow
|
||||||
access-control: ::1 allow
|
access-control: ::1 allow
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue