ls48hol/Config-Pihole
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
master
Config-Pihole/unbound.conf.d/pi-hole-tls.conf
michael holder db4c483440 first commit
2021-04-09 18:30:36 +02:00

29 lines
811 B
Plaintext
Raw Permalink Blame History

## DNS Over TLS, Simple ENCRYPTED recursive caching DNS, TCP port 853
## unbound.conf, original at https://calomel.org/unbound_dns.html
# tweaks by bartonbytes.com
server:
access-control: 127.0.0.0/8 allow
cache-max-ttl: 14400
cache-min-ttl: 600
do-tcp: yes
hide-identity: yes
hide-version: yes
interface: 127.0.0.1
minimal-responses: yes
prefetch: yes
qname-minimisation: yes
rrset-roundrobin: yes
#ssl-upstream: yes
use-caps-for-id: yes
verbosity: 0
port: 5533
tls-upstream: yes
tls-cert-bundle: "/etc/ssl/certs/ca-certificates.crt"
#
forward-zone:
name: "."
forward-addr: 9.9.9.9@853 # quad9.net primary
#forward-addr: 1.1.1.1@853 # cloudflare primary
forward-addr: 149.112.112.112@853 # quad9.net secondary
#forward-addr: 1.0.0.1@853 # cloudflare secondary
Reference in New Issue View Git Blame Copy Permalink