• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

unbound client forward to knot-resolver server without recursion desired (RD) bit get status REFUSED.

Scheduled Pinned Locked Moved DHCP and DNS
unboundforwarding
2 Posts 2 Posters 742 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • ?
    A Former User
    last edited by Sep 26, 2022, 9:43 AM

    I'm working on a hobby project of setup my private remote resolver with knot-resolver. In knot-resolver documentation by default refuse queries without RD bit set to prevent snooping and able to unload the module right now as a workaround for unbound forward queries.

    My issue is now I have a DNS over tls port available on the remove server for my and I can't stop anyone from snooping the cache.
    What setting should set RD bit on out going queries?

    G 1 Reply Last reply Sep 26, 2022, 10:32 AM Reply Quote 0
    • G
      Gertjan @A Former User
      last edited by Sep 26, 2022, 10:32 AM

      @sauce
      I've found https://knot-resolver.readthedocs.io/en/stable/modules-refuse_nord.html
      How is this related to pfSense ?

      No "help me" PM's please. Use the forum, the community will thank you.
      Edit : and where are the logs ??

      1 Reply Last reply Reply Quote 0
      2 out of 2
      • First post
        2/2
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
        This community forum collects and processes your personal information.
        consent.not_received