From owner-freebsd-questions@freebsd.org Wed Aug 19 17:27:12 2015 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 701F29BE844 for ; Wed, 19 Aug 2015 17:27:12 +0000 (UTC) (envelope-from freebsd-questions@m.gmane.org) Received: from plane.gmane.org (plane.gmane.org [80.91.229.3]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 303A01886 for ; Wed, 19 Aug 2015 17:27:11 +0000 (UTC) (envelope-from freebsd-questions@m.gmane.org) Received: from list by plane.gmane.org with local (Exim 4.69) (envelope-from ) id 1ZS6uD-0007rk-Nm for freebsd-questions@freebsd.org; Wed, 19 Aug 2015 19:12:05 +0200 Received: from pool-72-66-1-32.washdc.fios.verizon.net ([72.66.1.32]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 19 Aug 2015 19:12:05 +0200 Received: from nightrecon by pool-72-66-1-32.washdc.fios.verizon.net with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 19 Aug 2015 19:12:05 +0200 X-Injected-Via-Gmane: http://gmane.org/ To: freebsd-questions@freebsd.org From: Michael Powell Subject: Re: unbound setup questions Date: Wed, 19 Aug 2015 13:11:34 -0400 Lines: 38 Message-ID: References: Reply-To: nightrecon@hotmail.com Mime-Version: 1.0 Content-Type: text/plain; charset="ISO-8859-1" Content-Transfer-Encoding: 7Bit X-Complaints-To: usenet@ger.gmane.org X-Gmane-NNTP-Posting-Host: pool-72-66-1-32.washdc.fios.verizon.net X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 19 Aug 2015 17:27:12 -0000 Damien Fleuriot wrote: > On 19 August 2015 at 01:59, Michael Powell wrote: [snip] >> >> I just began looking at replacing Bind since after last portupgrade to >> the latest and greatest broke the named chroot environment which has >> served me well for so long. Waiting to see if it is going to be fixed, or >> if bind is going to be ignored from now on. Hedging my bets with a plan >> B. >> >> The unbound that ships with the OS is really only designed to be a >> resolver for the local machine, at least as far as I know at this point >> in my meager research. If you need services more like you may have been >> accustomed to with Bind you may wish to take a look at the unbound in the >> ports tree: /usr/ports/dns/unound. Didn't know about this one until some >> wise chap on irc hit me with the clue bat. >> [snip] > > I have to disagree here. > > Been using local_unbound as a forwarding resolver for client hosts and it > works just fine. [snip] I suspected such is the case but did not take enough time to figure it out when I did a fresh test install when 10.0-Release came out. I was in a time crunch and just slapped bind99 on from ports, put all my old configs back and moved on. Thanks for showing how it's done, it's certainly beneficial. I've filed it away for future reference. I'm only in a preliminary stage of thinking about replacing bind99 with unbound. Need to learn more. Thanks! -Mike