When I configure unbound DNS service I automatically get the following access lists:
- Internal Allow 127.0.0.1/8
- Internal Allow ::1/64
- Internal Allow #.#.#.#/# ... my LAN address; eg: 10.0.0.1
I manually added aclDNS as following:
- Allow 10.0.0.2/0 ... internal DNS traffic is coming through this IP ONLY; ie: already-NATed by another router within my LAN
Generic traffic (sans DNS queries) will be going through 10.0.0.1.
So in this case I DO NOT WANT the automatically-added ACLs ... how can I get rid of them ?