Unbound
FreeBSD-ports
Unbound | FreeBSD-ports | |
---|---|---|
40 | 70 | |
2,797 | 452 | |
2.1% | 0.2% | |
9.5 | 10.0 | |
4 days ago | 1 day ago | |
C | ||
BSD 3-clause "New" or "Revised" License | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Unbound
-
Just one bad packet can bring down a vulnerable DNS server thanks to DNSSEC
dnsmasq and unbound are impacted to
https://github.com/NLnetLabs/unbound/releases/tag/release-1....
https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/20...
As are any other DNSSEC validators that followed the specifications.
Bind9 has its problems but this is not its fault this time.
-
Encrypted Client Hello – the last puzzle piece to privacy
Are you familiar with https://pi-hole.net/ ?
In my house I want DNS resolution to be performed by my own DNS resolver (https://github.com/NLnetLabs/unbound), after I block ad domains.
DoH circumvents that.
-
F5 Forward Proxy DNS resolvers CNAME limit
So yep it's an unbound thing: https://github.com/NLnetLabs/unbound/issues/438 there was a PR to allow a user to change the depth of a chase. I doubt F5 would have that version of unbound in any current software but support may be able to check or look at a lab 17.1 to see what version it is--you could then manually edit the conf file but it wouldn't persist through upgrades..
-
DNS Resolver does not return correct responses for all queries
That's confirms in issue#362 I found.
-
What upstream dns resolvers do you use?
The last time I checked, Unbound does not support upstream DoH. You can configure it to reply to DoH requests from clients, but you can't use it to forward queries to another DoH provider like Cloudflare or Quad9. Has that changed? The pull request has been open for 3 years.
-
Can unbound operate in iterative mode?
And, while the documentation for unbound.conf doesn’t say a whole lot about the iterator module specifically as far as I can tell, the code says:
-
Running PiHole on a second server
Gravity-Sync won't do that. But searching around on GH, I found this : https://github.com/NLnetLabs/unbound/blob/master/contrib/unbound_cache.sh
- DNS Delegation - How to DNSSEC?
-
pfBlockerNG-devel v3.1.0_7 / v3.1.0_14
Version 1.15.0 Configure line: --with-libexpat=/usr/local --with-ssl=/usr --disable-dnscrypt --disable-dnstap --with-libnghttp2 --enable-ecdsa --disable-event-api --enable-gost --with-libevent --with-pythonmodule=yes --with-pyunbound=yes ac_cv_path_SWIG=/usr/local/bin/swig LDFLAGS=-L/usr/local/lib --disable-subnet --disable-tfo-client --disable-tfo-server --with-pthreads --prefix=/usr/local --localstatedir=/var --mandir=/usr/local/man --infodir=/usr/local/share/info/ --build=amd64-portbld-freebsd12.3 Linked libs: libevent 2.1.12-stable (it uses kqueue), OpenSSL 1.1.1n-freebsd 15 Mar 2022 Linked modules: dns64 python respip validator iterator BSD licensed, see LICENSE in source package for details. Report bugs to [email protected] or https://github.com/NLnetLabs/unbound/issues
-
Anyone know of some open-source or community based name-servers?
"Unbound" for example https://github.com/NLnetLabs/unbound
FreeBSD-ports
-
Odd issue with pfBlocker
Currently running pfSense 2.6 and pfBlocker 3.2.0_4
- Set pfsense to NOT use Tailscale DNS?
-
pfSense Plus Software Version 23.05 is Now Available for Upgrades
I see that the package system_patches 2.2.2 and its installed but I see here https://github.com/pfsense/FreeBSD-ports/commit/de76acb1d15fdff5587739ffdf6bb92eeb6b6e22 that 2.2.3 is apparently there but not able to see it as an update.
-
Upgrade Suricata to the last version
Running 23.05, why is suricata still on 6.0.10 version while 6.0.11 brings some netmap fixes and was committed to devel branch almost a month ago ? Update Suricata GUI package to support version 6.0.11 of the binary. · pfsense/FreeBSD-ports@7b3e46e (github.com)
-
Any plans for pfSense to re-introduce Wireguard into the base system?
The latest WG package version in pfSense+ 23.05-devel is currently 0.2.0_1, and the details of the commits on GitHub say "WireGuard support is now included in base."
-
Internet drop on Updates/Reloads
I have installed PFBlocker Devel 3.2.0_3 on PFSense+ 23.01 and it works perfectly! I was able to install and do a basic configuration. I also added a feed or two for blocking ads, adult content etc. When I click on Update or Reload, I'm unable to use the internet until it is done reloading or updating and everything is back to normal after. It doesn't take very long and this is a home office so I'm not super worried about it. However, some of our clients made some changes without knowing this and caused some minor outages.
- How to use "Google Trust Services" as CA on pfSense?
-
custom options in DNS Resolver no longer include pfblockerng
After upgrading to 3.2.0_2 there seems that there are no longer custom options which used to include pfblockerng inc is that regression or correct? thanks.
- DNS Resolver DHCP Registration Inconsistency
-
DOH/SafeSearch redirection settings not applying
I suppose what I am expecting is for the following files to be in '/var/unbound': https://github.com/pfsense/FreeBSD-ports/blob/devel/net/pfSense-pkg-pfBlockerNG-devel/files/usr/local/pkg/pfblockerng/pfb_dnsbl.safesearch.conf https://github.com/pfsense/FreeBSD-ports/blob/devel/net/pfSense-pkg-pfBlockerNG-devel/files/usr/local/pkg/pfblockerng/pfb_dnsbl.youtube_restrictmoderate.conf
What are some alternatives?
Bind - Mirror of https://gitlab.isc.org/isc-projects/bind9, please submit issues and PR/MRs in the GitLab. Any issues and PRs opened here will be closed without a comment.
pfsense-packages - pfSense packages repository
PowerDNS - PowerDNS Authoritative, PowerDNS Recursor, dnsdist
apcupsd-pfsense-widget - A pfsense widget for the apcupsd daemon
Knot Resolver - Knot Resolver - resolve DNS names like it's 2024
pfSense - Main repository for pfSense
Knot DNS - A mirrored repository
pfSense-pkg-WireGuard - This is a port of the original WireGuard UI bits as implemented by Netgate in pfSense 2.5.0 to a package suitable for rapid iteration and more frequent updating on future releases of pfSense.
dnsmasq - mirror of dnsmasq (git://thekelleys.org.uk/dnsmasq.git ). This account is NOT maintained by dnsmasq developers. I am happy to give account to them. Please feel free to contact me. 1584171677[at]qq[dot]com
FreeBSD-src - FreeBSD src with pfSense changes
nextdns - NextDNS CLI client (DoH Proxy)
awesome-bsd - A collection of awesome BSD related stuff