Messages

Thank you for this big update on how to install unbound + stubby on opnsense.

I am a satisfied user of these 2 softwares for about a year now.
I have got a few questions for you. I hope you will have the time to answer a few of them.

1) I have seen that you have enable the DNSSEC extension in Stubby.
We can see it in the stubby.yml files:

dnssec_return_status: GETDNS_EXTENSION_TRUE

If you have already activated the DNSSEC validation in unbound, don't you think that it is useless to activate it in stubby?
I have enabled DNSSEC only in unbound and everything is fine.
Unbound is making all the stuff about the dns queries. I am using stubby only to send the dns queries from unbound with DoT or DoH to several servers.


2) I will try your new settings with the main LAN Address instead of the localhost address. What is exactly the pro of this new settings ?

3)With the new plugin unbound-plus we will soon not have access anymore to the "custom options" in unbound GUI.
Where can we then specify the following to transfer the dns queries from unbound to stubby?

server:
forward-zone:
name: "."    # Allow all DNS queries
forward-addr: 192.168.7.11@8053 ## ( Your One Main LAN Address )
## END OF ENTRY

Thanks again for all the help provided on the install of stubby on opnsense.

Hello,

New bug found in the firewall rules web interface.
I am using OpnSense 19.1.1 in French on a Deciso 2630. The firmware was upgraded from Opnsense 18.7.10.
This bug was not there on 18.7.10.

See enclosed picture. The sign ">" is replaced by ">" in the description field.

Does somebody else notice the same thing ?

Bye.

Hello,

I have just noticed what might be a bug in the shaper interface.
I am using OpnSense 19.1.1 in French, after an upgrade from 18.7.10. The hardware is a Deciso 2630.

There is a bug in the pipe settings interface.
The mask option let you choose between 3 possibilities as shown on attached picture. And The first one is very strange.

Am I the only one with this issue ?

Bye.