Unbound di Freebsd  

gak pake lama..................


pkg_add -v -r unbound
cd /usr/local/etc/unbound
fetch ftp://FTP.INTERNIC.NET/domain/named.cache
rehash
unbound-control-setup
chown unbound:wheel unbound_*
chmod 440 unbound_*
mkdir /usr/local/etc/unbound/dev
echo "devfs   /usr/local/etc/unbound/dev devfs rw 0 0"  >> /etc/fstab
echo 'unbound_enable="YES"' >> /etc/rc.conf
echo 'devfs_set_rulesets="/usr/local/etc/unbound/dev=unbound_ruleset"' >> /etc/rc.conf

edit /usr/local/etc/unbound/unbound.conf

server:
         verbosity: 1
         statistics-interval: 120
         num-threads: 1
         interface: 0.0.0.0

         outgoing-range: 512
         num-queries-per-thread: 1024

         msg-cache-size: 32m
         rrset-cache-size: 64m 

         msg-cache-slabs: 4
         rrset-cache-slabs: 4

         cache-max-ttl: 86400
         infra-host-ttl: 60
         infra-lame-ttl: 120
         
         infra-cache-numhosts: 10000
         infra-cache-lame-size: 10k

         do-ip4: yes
         do-ip6: no
         do-udp: yes
         do-tcp: yes
         do-daemonize: yes

         access-control: 0.0.0.0/0 allow           
         chroot: "/usr/local/etc/unbound"
         username: "unbound"
         directory: "/usr/local/etc/unbound"
        logfile: ""
         use-syslog: no
         root-hints: "/usr/local/etc/unbound/named.cache"
       
        identity: "DNS"
        version: "1.4"
        hide-identity: yes
        hide-version: yes
        harden-glue: yes
        do-not-query-address: 127.0.0.1/8
        do-not-query-localhost: yes
        module-config: "iterator"

        #zone localhost
        local-zone: "localhost." static 
        local-data: "localhost. 10800 IN NS localhost."
        local-data: "localhost. 10800 IN SOA localhost. nobody.invalid. 1 3600 1200 604800 10800" 
        local-data: "localhost. 10800 IN A 127.0.0.1" 

        local-zone: "127.in-addr.arpa." static 
        local-data: "127.in-addr.arpa. 10800 IN NS localhost." 
        local-data: "127.in-addr.arpa. 10800 IN SOA localhost. nobody.invalid. 2 3600 1200 604800 10800" 
        local-data: "1.0.0.127.in-addr.arpa. 10800 IN PTR localhost." 
       
        #zone net60.net
        local-zone: "net60.net." static
        local-data: "net60.net. 86400 IN NS ns1.net60.net."
        local-data: "net60.net. 86400 IN SOA net60.net. hostmaster.net60.net.  3 3600 1200 604800 86400"
        local-data: "net60.net. 86400 IN A 192.168.3.1"
        local-data: "www.net60.net. 86400 IN A 192.168.3.1"
        local-data: "ns1.net60.net. 86400 IN A 192.168.3.1"
      
        local-zone: "3.168.192.in-addr.arpa." static
        local-data: "3.168.192.in-addr.arpa. 10800 IN NS net60.net."
        local-data: "3.168.192.in-addr.arpa. 10800 IN SOA net60.net. hostmaster.net60.net. 4 3600 1200 604800 864000"
        local-data: "1.3.168.192.in-addr.arpa. 10800 IN PTR net60.net."

        forward-zone: 
        name: "."
forward-addr: 203.130.196.5
        forward-addr: 203.130.193.74
        forward-addr: 222.124.204.34
        forward-addr: 203.130.196.6      
        forward-addr: 8.8.8.8
        forward-addr: 8.8.4.4 
#forward-addr: 180.131.144.144
        #forward-addr: 180.131.145.145      
               
remote-control:
        control-enable: yes
        control-interface: 127.0.0.1
        control-port: 953
        server-key-file: "/usr/local/etc/unbound/unbound_server.key"
        server-cert-file: "/usr/local/etc/unbound/unbound_server.pem"
        control-key-file: "/usr/local/etc/unbound/unbound_control.key"
        control-cert-file: "/usr/local/etc/unbound/unbound_control.pem"

edit di squid.conf
nameserver 127.0.0.1


setting mikrotiknya sama unbound on ubuntu

best regard teuku rizal

This entry was posted on 16.36 and is filed under . You can leleave a response and llow any responses to this entry through the Langganan: Posting Komentar (Atom) .
Filed under

0 komentar

Posting Lebih Baru Posting Lama