Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Feature Request: DNSBL should use it's own Unbound instance

    pfBlockerNG
    2
    2
    574
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      athurdent
      last edited by

      Don't know if this has been suggested before (Sorry if it has, I searched the forum, but maybe not thoroughly enough) , but it would be great to have the DNSBL feature use it's own Unbound instance.

      Benefits:

      • great for people who want to setup a separate Interface/Subnet/WLAN just for Adblocking (like me)
      • keep the main DNS resolver untouched/alive, in case anything goes wrong with pfBlocker's extra config

      We could use the system Unbound config and just change the Port to something like 5353 or use an instance that just forwards it's requests to the main Unbound instance, also running on something like 5353.
      To finally use the DNSBL resolver we could setup NAT from 53 to 5353 where needed.

      Now flame me :)

      1 Reply Last reply Reply Quote 0
      • BBcan177B
        BBcan177 Moderator
        last edited by

        To bypass DNSBL, you can configure the LAN devices to use a different DNS server and that should solve this issue for you. Could also run the DNS Forwarder (dnsmasq) on a different port….

        "Experience is something you don't get until just after you need it."

        Website: http://pfBlockerNG.com
        Twitter: @BBcan177  #pfBlockerNG
        Reddit: https://www.reddit.com/r/pfBlockerNG/new/

        1 Reply Last reply Reply Quote 0
        • First post
          Last post