I am trying to setup "unbound" on my netbook which is a client on my
home network. I use this netbook for travel so the dhcp address I use
will be different at different places. The netbook is running Linux
Mint 17.1 (Rebecca).
I installed "unbound" but am having problem with configuration which is
posted below. My /etc/resolv.conf has the following entries
nameserver 127.0.0.1
search home.net
When I start my computer, the unbound starts as a service. At this
point I cannot go anywhere on the Net or get any system updates. Once I
stop the unbound service, I can go out onto the Internet and get updates.
Please let me know how to fix this problem. My goal is to have a
recursive caching server on my netbook.
Thank you in advance for any help and advice.
Subba Rao
PS - I would also like to include AD blockers (at the bottom of the
config) into this configuration at a later stage. At first I want
unbound to work.
------------- unbound.conf -------------
I installed "unbound" but am having problem with configuration which is
posted below. My /etc/resolv.conf has the following entries
nameserver 127.0.0.1
search home.net
When I start my computer, the unbound starts as a service. At this
point I cannot go anywhere on the Net or get any system updates. Once I
stop the unbound service, I can go out onto the Internet and get updates.
For starters it seems like you have a competing DNS service running.
From your /etc/resolv there's no way you should be able to satisfy DNS
queries by asking your localhost unless you have a DNS cache of some
sort running which you claim to be able to do once stopping Unbound.
Some distros run dnsmasq by default (not a good practice IMO) and it's
possible that's at least part of your problem.
Like Chris I'm confused why it is working when Unbound is running.
How do I make my dhcp address stays the same, so that I can go out
but change the nameserver lookup to use the unbound?
If you want to use DHCP, which you do if you are roaming, you have
little control of the address you are getting. But that should not be
a problem.
There is no need to listen on all interfaces for Unbound. Just
127.0.0.1 will be sufficient. So use
server:
interface: 127.0.0.1
Also when using DHCP it is very likely your network manager overwrites
your resolv.conf periodically. Be aware of that. Also, for blocking
the ad servers you can include these in your /etc/hosts file.
You can run 'netstat -lnup' as root to figure out if something else is
running om port 53 locally.
I'm not sure what your goal is running a local resolver. If it is
DNSSEC at the end host have a look at dnssec-trigger. Which is likely
in the repositories of Mint.