is it possible to run 2 instance of ubound?
or set ubound to serve to different network?
1 for forwarding to porn and malware block DNS
and 1 for no blocking?
or should this be simply done with 2 servers/opnsense entirely
or if dnsmasq at port 54, how do I set it so that my free wifi network will use that as DNS?
"local:54" in the DNS server list in DHCP?
dnsmasq (core), unbound (core), dnscrpyt-proxy (plugins) and bind (plugins) can call be installed and configured separately. But we don't offer multiple instances of the same service.
Cheers,
Franco
I run BIND (but you could just keep Unbound for that) on 127.0.0.1:53 and AdGuard Home on 127.0.0.1:5353. Then I use NAT Port Forwarding per VLAN depending on whether I want an active blocklist or not.
nice!
will try all your suggestion
Hi
I have Dnsmasq DNS and Unbound.
Dnsmasq for the guest and one other vlan to my pihole.
(you can choose the interface where you want to listen)
unbound forward it to my technitiumdns server.
Works perfect so you can split the dns and try all things of setups :)
bg
Quote from: I3iker on August 05, 2022, 07:01:53 AM
Hi
I have Dnsmasq DNS and Unbound.
Dnsmasq for the guest and one other vlan to my pihole.
(you can choose the interface where you want to listen)
unbound forward it to my technitiumdns server.
Works perfect so you can split the dns and try all things of setups :)
bg
if dnsmaq or any other DNS server, I have to do port forward correct? since no 2 services will have the same port? even if i have different listen ip/interface for both?
like dnsmaq port 53 interface "GuestLan"
ubound port 53 interface "LAN"
does DNSmasq allow inputting of forwarding DNS
EDIT:
ok got it to work via port forward, I incorrectly set it first as TCP only, now at UDP TCP and works correctly.
I am also now using, Ubound for my main LAN and Bind for my Guest Lan.
Perfect :)
FYI:
https://www.infoblox.com/dns-security-resource-center/dns-security-faq/is-dns-tcp-or-udp-port-53/