Configure DNS forwarding on Unbound

Before you begin

  • Note the IP addresses of the ETP recursive DNS servers. For more information, see View DNS server information.
  • Confirm that you have a root hints file configured . The root hints file (root.hints) contains DNS servers that your enterprise DNS server can contact if it’s unable to reach ETP.
.

Complete this procedure to configure DNS forwarding on an Unbound DNS server.

How to

  1. Log in to the Unbound server.
  2. From a terminal window, use a Linux text editor such as vi or Vim to open the unbound.conf file.
    Note: The unbound.conf is usually copied to /usr/local/etc/unbound/unbound.conf but it also can be located in /etc/unbound/unbound.conf or /etc/unbound.conf.
  3. Locate the forward-zone area of the file.
  4. Under forward-zone, enter this information: 
    forward-zone:  
           name: "."
           forward-addr: <ETP_primary_IP>
           forward-addr: <ETP_secondary_IP>
    where:
    • <ETP_primary_IP> is the IP address of the primary ETP recursive server.
    • <ETP_secondary_IP> is the IP address of the secondary ETP recursive server.
  5. In the configuration file, enter the following information to direct Unbound to the root hints file when Unbound is unable to reach ETP. 
    root-hints: root.hints
  6. Save these changes.