Maintained by: NLnet Labs

[Unbound-users] stub-zones and forwarding

Chris Smith
Wed Oct 8 23:14:12 CEST 2008


Hello,

Scenario is NSD (whether running on localhost or a secondary port) to serve 
internal only DNS, with Unbound for caching and forwarding or resolver.

In this particular case the plan is to forward all non-local queries to the 
OpenDNS servers.

With the local zones setup as forward-zone's everything works:
==================================================
forward-zone:
       name: "domain.example"
       forward-addr: 127.0.0.1
forward-zone:
       name: "."
       forward-addr: 208.67.222.222
       forward-addr: 208.67.220.220
==================================================
Local zone information is OK.

With the local zones setup as stub-zone's the local zones do not get served:
==================================================
stub-zone:
       name: "domain.example"
       stub-addr: 127.0.0.1 at 53
forward-zone:
       name: "."
       forward-addr: 208.67.222.222
       forward-addr: 208.67.220.220
==================================================
Local zone information is not resolved.

Without the wildcard forwarding, using unbound recursively both the forward-
zone and the stub-zone styles work.

As forward-zone's are supposed to be recursion capable the stub-zone 
configuration should be the preferred setup yet the wildcard forwarding, which 
honors other defined forward-zone's takes precedence over the defined stub-
zone's rendering them useless.

Chris