OPNsense Forum
English Forums => General Discussion => Topic started by: LouieLouie on July 21, 2020, 01:57:53 pm
-
I believe that opnsense overwrites resolv.conf every 30 minutes via /usr/local/etc/inc/system.inc
However, I'd like to add the following to resolv.conf:
options ndots:1 timeout:0.3 attempts:1 rotate
My understanding is that the normal timeout to failover from one name server to another in the /etc/resolv.conf file is 5 seconds. I'd like to change that to 0.3 seconds.
What is the approved method to accomplish this?
Thank you!
-
step 1: rtfm
step 2: per the manual at https://docs.opnsense.org/manual/unbound.html ...
Advanced Configurations
Some installations require configuration settings that are not accessible in the UI. To support these, individual configuration files with a .conf extension can be put into the /var/unbound/etc directory. These files will be automatically included by the UI generated configuration. Multiple configuration files can be placed there. But note that
As it cannot be predicted in which clause the configuration currently takes place, you must prefix the configuration with the required clause. For the concept of “clause” see the unbound.conf(5) documentation.
The wildcard include processing in unbound is based on glob(7). So the order in which the files are included is in ascending ASCII order.
Namecollisions with plugins, which use this extension point e. g. unbound-plus, may occur. So be sure to use an unique filename.
It is a good idea, to check the complete configuration by running the unbound-checkconf utility:
# check if configuration is valid
unbound-checkconf /var/unbound/unbound.conf
This will report errors that prevent unbound from starting.
This is a sample configuration file to add an option in the server clause:
server:
private-domain: xip.io