aboutsummaryrefslogtreecommitdiffstats
path: root/config/unbound/unbound.inc
Commit message (Collapse)AuthorAgeFilesLines
* Bypass validation and tell Unbound this is a non-DNSSEC domain. ↵Warren Baker2011-01-161-0/+1
| | | | Domainoverrides should all be like this.
* Syntax error for allow_snoop validation.Warren Baker2011-01-161-1/+1
|
* First check to see if previous config before choosing listening interfaces.Warren Baker2011-01-161-5/+9
|
* Correct use of !is_array() not !array() *chortle*Warren Baker2011-01-131-3/+3
|
* Added Unbound ACL's page, users can now specify which networks are allowed ↵Warren Baker2011-01-121-6/+42
| | | | to query, refused, denied and allowed to snoop Unbound.
* Ensure number is not a negative.Warren Baker2011-01-111-3/+13
|
* Add option to disable TXT support(txts were created automatically containing ↵Warren Baker2011-01-041-10/+81
| | | | the descrs for hosts etc.). Also added a bunch of optimization settings and lastly a missing require_once().
* Add DNS Rebinding check as checkbox. If any DNS answers return RFC1918 ↵Warren Baker2010-12-171-9/+19
| | | | address the answer is stripped, unless the domain is configured in domainoverrides. With this option disabled all RFC1918 answers will be returned. Possibly need to break this and few other options into rowhelper type page...
* Make sure filesystem is writable at install time and when root files are ↵Warren Baker2010-12-171-0/+7
| | | | been downloaded.
* Ensure forward upstream servers are saved.Warren Baker2010-12-171-1/+0
|
* Set number of operating threads equal to number of cpu/coresScott Ullrich2010-12-151-1/+10
|
* private-domain: was needed to ensure responses with RFC1918 addresses are ↵Warren Baker2010-12-141-12/+24
| | | | allowed and not stripped. This protection is for DNS Rebinding.
* Only print stub-prime: once.Warren Baker2010-12-141-1/+1
|
* forward-zone: expect upstream DNS server to be authorative for everything. ↵Warren Baker2010-12-141-2/+3
| | | | So in the case of a CNAME it could potentially return FAIL. Rather let Unbound do the resolving. Bump version number.
* Add unbound_validation() to ensure that DNSMasq is not enabled, if so dont ↵Warren Baker2010-12-071-10/+10
| | | | disable it but inform the user. Also dont assume Unbound should be set to 'on' but rather inform the user they need to configure it before it will be started.
* Use correct quotes for TXT records and escape quotes.Warren Baker2010-12-061-2/+3
|
* Add function to read /etc/hosts file for any DHCPLeases updates on ↵Warren Baker2010-12-061-9/+51
| | | | resave/restart. Unfortunately, for the moment, it will require a resave on Unbound for any changes in /etc/hosts to be updated in Unbound. local-data: configs should be split out into a separate file.
* Correctly handle /etc/hosts entries and static DHCP entries.Warren Baker2010-12-061-6/+55
|
* Actually remove the touch() and not add it.Warren Baker2010-12-021-1/+0
|
* Added configurable Statistics settings.Warren Baker2010-12-021-5/+19
| | | | Remove touch() of unbound log file at install time - this is all handled by syslog now.
* touch not needed as we back on syslog.Warren Baker2010-12-021-2/+1
|
* Add Unbound logging to a separate clog file (unbound.log) and reduce noise ↵Warren Baker2010-12-021-7/+7
| | | | from every 5minutes to every hour.
* chown -RScott Ullrich2010-11-211-1/+1
|
* Use unlink_if_exists.Scott Ullrich2010-11-211-2/+7
|
* Ensue unbound user existsScott Ullrich2010-11-211-1/+10
|
* Listen on CARP VIPs that are associated to the interfaces that have been ↵Warren Baker2010-11-181-4/+19
| | | | selected.
* Bump version number and correctly handle domain overrides including the ↵Warren Baker2010-11-181-10/+17
| | | | ability to have duplicate domain override entries.
* Various formatting issues and descriptions added for config file settings.Warren Baker2010-11-181-44/+56
|
* Only add TXT records if there is a description for host entries.Warren Baker2010-11-181-2/+4
|
* Do not allow duplicates. Boost connect timeout.Scott Ullrich2010-11-171-13/+22
|
* Prevent the killing of php execution in case of an error.Warren Baker2010-11-161-7/+7
|
* Initial commit of the Unbound package (that 1 day will replace dnsmasq). It ↵Warren Baker2010-11-161-0/+415
is currently limited in configuration options but it does what DNSMasq does excluding the DNS rebind check. Need to investigate that.