cat /tmp/fwd.conf

LuMiWa · April 4, 2024, 9:49pm

Hi!

I am using DNS over TLS caching DNS, port 853 on Unbound 1.19.3 It
works but it doesnt work with Quad9.
My unbound.conf:

# DNS Over TLS, Simple ENCRYPTED recursive caching DNS, TCP port 853
## FreeBSD 14 unbound config

pemensik · July 9, 2024, 10:36am

It looks correct somehow. You can test minimal configuration with unbound-host

cat /tmp/fwd.conf

server:
tls-system-cert: yes

forward-zone:
name: “.”
forward-tls-upstream: yes
forward-first: no
forward-addr: 116.203.32.217@853#fdns1.dismail.de
forward-addr: 159.69.114.157@853#fdns2.dismail.de

unbound-host -vDC /tmp/fwd.conf example.net

example.net has address 93.184.215.14 (secure)
example.net has IPv6 address 2606:2800:21f:cb07:6820:80da:af6b:8b2c (secure)
example.net mail is handled by 0 . (secure)

Try a minimal configuration with unbound-host first, then get back to unbound daemon. Try commenting most unnecessary parts and then uncomment them one by one. I would try it first without chroot, when it works well, use chroot too.

LuMiWa · July 10, 2024, 9:43am

It old post. dismail servers works but Quad9 not. Sometimes worked hour
or some and than stopped.

DOT

cat /tmp/fwd.conf

unbound-host -vDC /tmp/fwd.conf example.net