Skip to main content

DNS: Recursive DNS

UnboundOption 1: Public Recursive Name Server

DNSI isdon't an important utility for your network and security so I'd recommend running a recursive DNS resolverhave to removedo dependenciesanything onsince externaldnsmasq namewill servers.query something like Cloudflare.

Option 2: Unbound

$ apt install unbound

Recursive DNS can sometimes sacrifice speed for security so the unbound server is going to be limited to only serve DNS requests loopback addresses. Everyone else will have to go through a DNS caching server (_dnsmasq)) I'll setup later to perform DNS queries.

# /etc/unbound/unbound.conf.d/local.conf
+ server:
+ 	interface: 127.0.0.1
+ 	interface: ::1
+ 	access-control: 127.0.0.1 allow
+ 	access-control: ::1 allow

$ systemctl restart unbound
Back to top