From abd21e008a950c1a848e78fef680750b02c64518 Mon Sep 17 00:00:00 2001 From: Aminda Suomalainen Date: Mon, 22 Apr 2024 07:42:53 +0300 Subject: [PATCH] well-known-dns.conf: typetransparent subdomains just in case Theoretically the higher level domain affects them too, but in practice I am unsure and I have previously only used always_reject for google-analytics & subdomains blocking. It at least isn't causing warnings or errors. --- etc/unbound/unbound.conf.d/well-known-dns.conf | 9 +++++++-- 1 file changed, 7 insertions(+), 2 deletions(-) diff --git a/etc/unbound/unbound.conf.d/well-known-dns.conf b/etc/unbound/unbound.conf.d/well-known-dns.conf index 90677142..64823b73 100644 --- a/etc/unbound/unbound.conf.d/well-known-dns.conf +++ b/etc/unbound/unbound.conf.d/well-known-dns.conf @@ -32,16 +32,19 @@ server: local-data: "dns0.eu. AAAA 2a0f:fc80::" local-data: "dns0.eu. AAAA 2a0f:fc81::" # DNS0 Zero + local-zone: "zero.dns0.eu." typetransparent local-data: "zero.dns0.eu. A 193.110.81.9" local-data: "zero.dns0.eu. A 185.253.5.9" local-data: "zero.dns0.eu. AAAA 2a0f:fc80::9" local-data: "zero.dns0.eu. AAAA 2a0f:fc81::9" # DNS0 Kids + local-zone: "kids.dns0.eu." typetransparent local-data: "kids.dns0.eu. A 193.110.81.1" local-data: "kids.dns0.eu. A 185.253.5.1" local-data: "kids.dns0.eu. AAAA 2a0f:fc80::1" local-data: "kids.dns0.eu. AAAA 2a0f:fc81::1" # DNS0 Open + local-zone: "open.dns0.eu." typetransparent local-data: "open.dns0.eu. A 193.110.81.254" local-data: "open.dns0.eu. A 185.253.5.254" local-data: "open.dns0.eu. AAAA 2a0f:fc80::ffff" @@ -53,16 +56,17 @@ server: local-data: "cloudflare-dns.com. AAAA 2606:4700:4700::1111" local-data: "cloudflare-dns.com. AAAA 2606:4700:4700::1001" # Cloudflare Malware blocking + local-zone: "security.cloudflare-dns.com." typetransparent local-data: "security.cloudflare-dns.com. A 1.1.1.2" local-data: "security.cloudflare-dns.com. A 1.0.0.2" local-data: "security.cloudflare-dns.com. AAAA 2606:4700:4700::1112" local-data: "security.cloudflare-dns.com. AAAA 2606:4700:4700::1002" # Mullvad ad, tracker & malware block - local-zone: "dns.mullvad.net." typetransparent + local-zone: "base.dns.mullvad.net." typetransparent local-data: "base.dns.mullvad.net. A 194.242.2.4" local-data: "base.dns.mullvad.net. AAAA 2a07:e340::4" # AdGuard Default - local-zone: "dns.adguard.com." typetransparent + local-zone: "dns.adguard-dns.com." typetransparent local-data: "dns.adguard-dns.com. A 94.140.14.14" local-data: "dns.adguard-dns.com. A 94.140.15.15" local-data: "dns.adguard-dns.com. AAAA 2a10:50c0::ad1:ff" @@ -74,6 +78,7 @@ server: local-data: "dns.google. AAAA 2001:4860:4860::8888" local-data: "dns.google. AAAA 2001:4860:4860::8844" # Google DNS64 + local-zone: "dns64.dns.google." typetransparent local-data: "dns64.dns.google. AAAA 2001:4860:4860::6464" local-data: "dns64.dns.google. AAAA 2001:4860:4860::64"