Hello all,
I was watching a YouTube video about turning Pi-Hole into a recursive DNS. Rather than doing that can I make my Unbound DNS in OPNsense recursive, so it only has to go out to the Internet when it does not have a DNS result?
Thanks,
Steve
It is by default.
I was under the impression that
Settings - > General -> Allow DNS server list to be overridden by DHCP/PPP on WAN
is enabled by default.
Yes? That will change which DNS servers OPNsense itself will use. If Unbound is enabled and if you configure your DHCP in a way to point clients at Unbound, Unbound will serve as a recursive resolver.
Ups :)
I wrongfully assumed that the interfaces DHCPv4 default setting is to use the global DNS servers (in the default case, the ISP DNS servers) but that is only the second option if there is no unbound for that interface is running.
So you are right, by default it uses recursive DNS (unbound).