default DNS caching name server on Fedora ?

Simo Sorce simo at redhat.com
Wed Jun 20 16:05:57 UTC 2012


On Wed, 2012-06-20 at 10:01 -0600, Kevin Fenzi wrote:
> On Wed, 20 Jun 2012 11:47:17 -0400
> Simo Sorce <simo at redhat.com> wrote:
> 
> > Ok, I guess this topic has been brought up before, but I think some
> > things changed recently that would warrant seriously considering
> > adding a default caching name server in fedora installs.
> 
> ...snip... 
> 
> > 
> > Discuss.
> 
> You can already (all be it somewhat manually) do this with
> dnssec-trigger. 
> 
> yum install dnssec-trigger
> 
> reboot or: 
> 
>   /bin/systemctl restart dnssec-triggerd.service
>   /bin/systemctl restart dnssec-triggerd-keygen.service
> 
> Connect your vpn, etc. 
> 
> Then tell unbound what you want it to do: 
> 
> unbound-control forward_add redhat.com x.x.x.x y.y.y.y
> unbound-control forward_add yourdomain z.z.z.z
> 
> (unbound-control gives you a lot of control, you can flush cache, setup
> forward, see it's man page or help for all the options). 
> 
> I'm not sure how hard/possible it is for dnssec-trigger to get this
> info from the vpn/NM and just set it for you. 

Yes this is all good 'n' nice.

The point is, can we/should we/want we make this the default ?
(And work on integrating NM -> unbound automatic configuration ?)

Simo.

-- 
Simo Sorce * Red Hat, Inc * New York



More information about the devel mailing list