unbound: retrieve list of root DNS servers

This commit is contained in:
Victor LABORIE 2018-01-11 12:41:40 +01:00
parent d9756702f6
commit a8f7a7748e
2 changed files with 11 additions and 1 deletions

View File

@ -7,6 +7,16 @@
tags:
- unbound
- name: Retrieve list of root DNS servers
get_url:
url: https://www.internic.net/domain/named.cache
dest: /etc/unbound/root.hints
force: yes
mode: "0644"
notify: reload unbound
tags:
- unbound
- name: Copy Unbound config
template:
src: unbound.conf.j2

View File

@ -13,7 +13,7 @@ server:
hide-identity: yes
hide-version: yes
# root-hints: "/var/unbound/etc/named.cache"
root-hints: "/etc/unbound/root.hints"
# Uncomment to enable DNSSEC validation.
#auto-trust-anchor-file: "/etc/unbound/root.key"
# Serve zones authoritatively from Unbound to resolver clients.