search

MatthewVance / stubby-docker

Run Stubby without losing the performance benefits of having a local caching DNS resolver.
MIT License
91 stars 28 forks source link

Why is root-hints not used in unbound? #15

Closed txtsd closed 3 years ago

txtsd commented 3 years ago

Why isn't root-hints: "/etc/unbound/root.hints" used in unbound.conf?

MatthewVance commented 3 years ago

By default a list of builtin root hints is used by Unbound. Providing your own file is supported for Unbound in the event you need to provide a more up-to-date list. If the package stays updated, that shouldn't be necessary.

Plus, Unbound is basically a local cache in this setup and Stubby is doing most of the work. Moreover, the default setup is designed to forward queries to an external resolving DNS server over TLS rather than act as a recursive DNS server, further negating the need for root-hints.

https://wiki.archlinux.org/index.php/unbound#Root_hints

https://nlnetlabs.nl/documentation/unbound/unbound-anchor/

txtsd commented 3 years ago

Gotcha!

MatthewVance commented 3 years ago

No worries. It is confusing. You're not the first to ask.

On Sun, Nov 22, 2020, 7:48 AM txtsd notifications@github.com wrote:

Gotcha!

— You are receiving this because you modified the open/close state. Reply to this email directly, view it on GitHub https://github.com/MatthewVance/stubby-docker/issues/15#issuecomment-731751327, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAUMHOW3SES5ITBGCUAQLYLSREJD3ANCNFSM4T6MSAFQ .