Skip to content

Latest commit

 

History

History
49 lines (37 loc) · 3.36 KB

README.md

File metadata and controls

49 lines (37 loc) · 3.36 KB
Raw

Docker Stars Docker Pulls

Unbound on Alpine

Running

Use this command to start the container. Unbound will listen on ports 53/udp and 53/tcp.

docker run --name unbound -d -p 53:53/udp -p 53:53 malaiwah/unbound

Put custom files in /etc/unbound/conf.d , ending in *.conf

docker run --name unbound -d -p 53:53/udp -p 53:53 -v /opt/docker-unbound/forward.conf:/etc/unbound/conf.d/forward.conf:ro malaiwah/unbound

For example, to forward a specific domain or even default for all queries with the root at ".":

forward-zone: name: "." forward-addr: 8.8.8.8 forward-addr: 8.8.4.4

Configuration

Parameters:

  • -e DO_IPV6 Enable or disable ipv6. (Default: "yes", Possible Values: "yes, no")
  • -e DO_IPV4 Enable or disable ipv4. (Default: "yes", Possible Values: "yes, no")
  • -e DO_UDP Enable or disable udp. (Default: "yes", Possible Values: "yes, no")
  • -e DO_TCP Enable or disable tcp. (Default: "yes", Possible Values: "yes, no")
  • -e VERBOSITY Verbosity number, 0 is least verbose. (Default: "0", Possible Values: "")
  • -e SO_RCVBUFF Buffer size for UDP port 53 incoming. (Default: "0", Possible Values: "")
  • -e SO_SNDBUF Buffer size for UDP port 53 outgoing. (Default: "0", Possible Values: "")
  • -e SO_REUSEPORT Use SO_REUSEPORT to distribute queries over threads. (Default: "no", Possible Values: "yes, no")
  • -e EDNS_BUFFER_SIZE EDNS reassembly buffer to advertise to UDP peers. (Default: "4096", Possible Values: "")
  • -e MSG_CACHE_SIZE The amount of memory to use for the message cache. Plain value in bytes or you can append k, m or G. (Default: "4m", Possible Values: "")
  • -e RRSET_CACHE_SIZE The amount of memory to use for the RRset cache. Plain value in bytes or you can append k, m or G. (Default: "4m", Possible Values: "")
  • -e CACHE_MIN_TTL The time to live (TTL) value lower bound, in seconds. (Default: "0", Possible Values: "")
  • -e CACHE_MAX_TTL The time to live (TTL) value cap for RRsets and messages in the cache. Items are not cached for longer. In seconds. (Default: "86400", Possible Values: "")
  • -e CACHE_MAX_NEGATIVE_TTL The time to live (TTL) value cap for negative responses in the cache. (Default: "3600", Possible Values: "")
  • -e HIDE_IDENTITY Enable to not answer id.server and hostname.bind queries. (Default: "no", Possible Values: "yes, no")
  • -e HIDE_VERSION Enable to not answer version.server and version.bind queries. (Default: "no", Possible Values: "yes, no")
  • -e DNSSEC_VALIDATOR Enable DNSSEC validation. (Default: "no", Possible Values: "yes, no")
  • -e DNSSEC_VERBOSITY Enable Unbound DNSSEC validation verbose logging. (Default: "0", Possible Values: "0, 1, 2")

Original idea