aboutsummaryrefslogtreecommitdiffstats
path: root/config
diff options
context:
space:
mode:
authorWarren Baker <warren@decoy.co.za>2011-01-16 22:49:50 +0200
committerWarren Baker <warren@decoy.co.za>2011-01-16 22:49:50 +0200
commita2b83e91543ce5f67f74b0fd5c8159bec6d38d0f (patch)
tree541fef955867913e910aad771ff003d2f8f2b98a /config
parentef88267ee4d6f763648416ac237cc38c18bd3bd2 (diff)
downloadpfsense-packages-a2b83e91543ce5f67f74b0fd5c8159bec6d38d0f.tar.gz
pfsense-packages-a2b83e91543ce5f67f74b0fd5c8159bec6d38d0f.tar.bz2
pfsense-packages-a2b83e91543ce5f67f74b0fd5c8159bec6d38d0f.zip
Bypass validation and tell Unbound this is a non-DNSSEC domain. Domainoverrides should all be like this.
Diffstat (limited to 'config')
-rw-r--r--config/unbound/unbound.inc1
1 files changed, 1 insertions, 0 deletions
diff --git a/config/unbound/unbound.inc b/config/unbound/unbound.inc
index 7b7c053a..8cb14aae 100644
--- a/config/unbound/unbound.inc
+++ b/config/unbound/unbound.inc
@@ -721,6 +721,7 @@ function unbound_add_domain_overrides($pvt=false) {
foreach($result as $domain=>$ips) {
if($pvt == true) {
$domain_entries .= "private-domain: \"$domain\"\n";
+ $domain_entries .= "domain-insecure: \"$domain\"\n";
} else {
$domain_entries .= "stub-zone:\n";
$domain_entries .= "\tname: \"$domain\"\n";