Unbound: Difference between revisions
Typo |
m Style correction |
||
| Line 5: | Line 5: | ||
== Minimal configuration. DNS resolver == | == Minimal configuration. DNS resolver == | ||
In this case our DNS queries are not encrypted upstream because the root servers do not support DNS-over-TLS (DoT) or DNS-over-HTTPS (DoH). | In this case our DNS queries are not encrypted upstream because the internet root name servers do not support DNS-over-TLS (DoT) or DNS-over-HTTPS (DoH). | ||
<syntaxhighlight lang="nixos"> | <syntaxhighlight lang="nixos"> | ||
| Line 27: | Line 27: | ||
== DNS forwarder with blocklists == | == DNS forwarder with blocklists == | ||
In this configuration we are using DoT to Quad9 and Cloudflare public DNS resolvers, | In this configuration we are using DoT to reach Quad9 and Cloudflare public DNS resolvers, in addition, we are filtering the results with a list that blocks adds and improves privacy and security and privacy (as Pi-hole does). | ||
<syntaxhighlight lang="nixos"> | <syntaxhighlight lang="nixos"> | ||