Unbound(DNSリゾルバ)インストールに関するサンプルコマンド

Unboundインストール

yum install -y epel-release
yum install -y unbound

Unboundの設定

mkdir -p /root/backup
cp -p /etc/unbound/unbound.conf ${BKDIR}/unbound.conf.`date "+%Y%m%d_%H%M%S"`

cat << 'EOF' | sudo tee /etc/unbound/conf.d/infra-workshop.tech.conf
server:
        interface: 0.0.0.0
        access-control: 10.0.0.0/8 allow
        do-ip6: no
        local-zone: "infra-workshop.tech" static
        local-data: "IN NS dns01.infra-workshop.tech."
        local-data: "IN NS dns02.infra-workshop.tech."
        local-data: "dns01.infra-workshop.tech. IN A 10.32.30.43"
        local-data: "dns02.infra-workshop.tech. IN A 10.32.30.44"
        local-data: "gw.infra-workshop.tech. IN A 10.32.30.254"
forward-zone:
    name: "."
    forward-addr: 8.8.8.8
EOF

Firewallの開放

firewall-cmd --add-service=dns --permanent
firewall-cmd --reload

Unboundの起動

systemctl start unbound
systemctl enable unbound