Unbound has a quirk and may reply on a different device address.
When Unbound answers with from-address different than it
received queries on, it may cause trouble for select VPN and
firewall configurations. Ensure Unbound replies with the same
address by changing this default.
Signed-off-by: Eric Luehrsen <ericluehrsen@gmail.com>
PKG_NAME:=unbound
PKG_VERSION:=1.10.1
-PKG_RELEASE:=2
+PKG_RELEASE:=3
PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.gz
PKG_SOURCE_URL:=https://nlnetlabs.nl/downloads/unbound
Boolean. If enabled version.server, version.bind, id.server, and
hostname.bind queries are refused.
- option interface_auto '0'
+ option interface_auto '1'
Boolean. If enabled DNS replies will have the same source address as
the request was sent to.
UB_B_QUERY_MIN=0
UB_B_QRY_MINST=0
UB_B_AUTH_ROOT=0
-UB_B_IF_AUTO=0
+UB_B_IF_AUTO=1
UB_D_CONTROL=0
UB_D_DOMAIN_TYPE=static
config_get_bool UB_B_LOCL_BLCK "$cfg" rebind_localhost 0
config_get_bool UB_B_DNSSEC "$cfg" validator 0
config_get_bool UB_B_NTP_BOOT "$cfg" validator_ntp 1
- config_get_bool UB_B_IF_AUTO "$cfg" interface_auto 0
+ config_get_bool UB_B_IF_AUTO "$cfg" interface_auto 1
config_get UB_IP_DNS64 "$cfg" dns64_prefix "64:ff9b::/96"
option edns_size '1280'
option extended_stats '0'
option hide_binddata '1'
+ option interface_auto '1'
option listen_port '53'
option localservice '1'
option manual_conf '0'
option validator '0'
option validator_ntp '1'
option verbosity '1'
- option interface_auto '0'
list trigger_interface 'lan'
list trigger_interface 'wan'
#list domain_insecure 'ntp.example.com'
projects / feed / packages.git / commitdiff