%general-entities; ]> $LastChangedBy: igor $ $Date: 2013-07-21 21:06:50 +0200 (Sun, 21 Jul 2013) $ Unbound Unbound is a validating, recursive, and caching DNS resolver. It is designed as a set of modular components that incorporate modern features, such as enhanced security (DNSSEC) validation, Internet Protocol Version 6 (IPv6), and a client resolver library API as an integral part of the architecture. &lfs77_checked; Package Information Download (HTTP): Download (FTP): Download MD5 sum: &unbound-md5sum; Download size: &unbound-size; Estimated disk space required: &unbound-buildsize; Estimated build time: &unbound-time; Unbound Dependencies Required Optional , , (for Python bindings), (for html documentation), and dnstap User Notes: There should be a dedicated user and group to take control of the unbound daemon after it is started. Issue the following commands as the root user: groupadd -g 88 unbound && useradd -c "Unbound DNS resolver" -d /var/lib/unbound -u 88 \ -g unbound -s /bin/false unbound Install Unbound by running the following commands: ./configure --prefix=/usr \ --sysconfdir=/etc \ --disable-static \ --with-pidfile=/run/unbound.pid && make If you have package installed and want to build html documentation, run the following command: make doc To test the results, issue make check. Now, as the root user: make install && mv -v /usr/sbin/unbound-host /usr/bin/ If you built html documentation, install it by running the following commands as the root user: install -v -m755 -d /usr/share/doc/unbound-&unbound-version; && install -v -m644 doc/html/* /usr/share/doc/unbound-&unbound-version; --with-libevent: This option enables libevent support allowing use of large outgoing port ranges. --with-pyunbound: This option enables building of the Python bindings. /etc/unbound/unbound.conf /etc/unbound/unbound.conf In the default configuration, unbound will bind to localhost (127.0.0.1 IP address) and allow recursive queries only from localhost clients. If you want to use unbound for local DNS resolution, run the following command as the root user: echo "nameserver 127.0.0.1" > /etc/resolv.conf If you are using a DHCP client for connecting to a network, /etc/resolv.conf gets overwritten with values provided by DHCP server. You can override this, for example in , by running the following command as the root user: sed -i '/request /i\supersede domain-name-servers 127.0.0.1;' \ /etc/dhcp/dhclient.conf For advanced configuration see /etc/unbound/unbound.conf file and the documentation. When Unbound is installed, some package builds fail if the file /etc/unbound/root.key is not found. This file is created by running the boot script (install instructions below). Alternatively, it can be created by running the following command as the root user: unbound-anchor If you want the Unbound server to start automatically when the system is booted, install the /etc/rc.d/init.d/unbound init script included in the package. unbound make install-unbound Installed Programs Installed Library Installed Directories unbound, unbound-anchor, unbound-checkconf, unbound-control, unbound-control-setup, and unbound-host libunbound.so and /usr/lib/python&python2-majorver;/site-packages/_unbound.so /etc/unbound and /usr/share/doc/unbound-&unbound-version; Short Descriptions unbound is a DNS resolver daemon. unbound unbound-anchor performs setup or update of the root trust anchor for DNSSEC validation. unbound-anchor unbound-checkconf checks unbound configuration file for syntax and other errors. unbound-checkconf unbound-control performs remote administration on the unbound DNS resolver. unbound-control unbound-control-setup generates self-signed certificate and private keys for the server and client. unbound-control-setup unbound-host is a DNS lookup utility similar to host from . unbound-host libunbound.so provides the Unbound API functions to programs. libunbound.so