unbound.conf

1. server:
2. verbosity: 1
3. statistics-interval: 120
4. num-threads: 4
5. statistics-cumulative: yes
6. interface: 0.0.0.0
7. port: 53
8.  
9. outgoing-range: 512
10. num-queries-per-thread: 1024
11.  
12. msg-cache-size: 128m
13. rrset-cache-size: 256m
14. so-rcvbuf: 8m
15.  
16. msg-cache-slabs: 8
17. rrset-cache-slabs: 8
18. infra-cache-slabs: 8
19. key-cache-slabs: 8
20.  
21. cache-min-ttl: 600
22. cache-max-ttl: 86400
23. infra-host-ttl: 60
24. infra-lame-ttl: 120
25.  
26. infra-cache-numhosts: 10000
27. infra-cache-lame-size: 10k
28.  
29. do-ip4: yes
30. do-ip6: yes
31. do-udp: yes
32. do-tcp: yes
33. do-daemonize: yes
34.  
35. access-control: 127.0.0.0/8 allow
36. access-control: 192.168.1.0/24 allow
37. access-control: 172.16.0.0/12 allow
38. access-control: 192.168.0.0/16 allow
39. access-control: 192.168.255.2/24 allow
40.  
41. chroot: "/etc/unbound"
42. username: "unbound"
43. directory: "/etc/unbound"
44. logfile: ""
45. use-syslog: no
46. pidfile: "/etc/unbound/unbound.pid"
47. root-hints: "/etc/unbound/named.cache"
48.  
49. identity: "DNS"
50. version: "1.4"
51. hide-identity: yes
52. hide-version: yes
53. harden-glue: yes
54. use-caps-for-id: yes
55. harden-dnssec-stripped: yes
56. do-not-query-address: 127.0.0.1/8
57. do-not-query-localhost: yes
58. module-config: "iterator"
59.  
60. # zone localhost
61. local-zone: "localhost." static
62. local-data: "localhost. 10800 IN NS localhost."
63. local-data: "localhost. 10800 IN SOA localhost. nobody.invalid. 1 3600 1200 604800 10800"
64. local-data: "localhost. 10800 IN A 127.0.0.1"
65.  
66. local-zone: "127.in-addr.arpa." static
67. local-data: "127.in-addr.arpa. 10800 IN NS localhost."
68. local-data: "127.in-addr.arpa. 10800 IN SOA localhost. nobody.invalid. 2 3600 1200 604800 10800"
69. local-data: "1.0.0.127.in-addr.arpa. 10800 IN PTR localhost."
70.  
71. # zone hybrida.com
72. local-zone: "hybrida.com." static
73. local-data: "hybrida.com. 86400 IN NS ns1.hybrida.com."
74. local-data: "hybrida.com. 86400 IN SOA hybrida.com. hostmaster.hybrida.com. 3 3600 1200 604800 86400"
75. local-data: "hybrida.com. 86400 IN A 192.168.1.11"
76. local-data: "www.hybrida.com. 86400 IN A 192.168.1.11"
77. local-data: "ns1.hybrida.com. 86400 IN A 192.168.1.11"
78.  
79. local-zone: "1.168.192.in-addr.arpa." static
80. local-data: "1.168.192.in-addr.arpa. 10800 IN NS hybrida.com."
81. local-data: "1.168.192.in-addr.arpa. 10800 IN SOA hybrida.com. hostmaster.hybrida.com. 4 3600 1200 604800 864000"
82. local-data: "11.1.168.192.in-addr.arpa. 10800 IN PTR hybrida.com."
83.  
84.  
85. forward-zone:                   # sesuaikan dengan isp anda
86. name: "."
87. forward-addr: 192.168.5.113
88. forward-addr: 10.10.1.114
89. forward-addr: 202.182.48.18
90. forward-addr: 202.182.48.19
91. forward-addr: 8.8.8.8
92. forward-addr: 8.8.4.4
93.  
94.  
95. remote-control:
96. control-enable: yes
97. control-interface: 127.0.0.1
98. control-port: 953
99. server-key-file: "/etc/unbound/unbound_server.key"
100. server-cert-file: "/etc/unbound/unbound_server.pem"
101. control-key-file: "/etc/unbound/unbound_control.key"
102. control-cert-file: "/etc/unbound/unbound_control.pem"