Quote from: meyergru on Today at 10:24:03 PMWho wants to look at a DNS query log and for what purpose?To check what's going when you need to block something that's not blocked by the current Blocking Lists and/or to see who has been naughty by calling home :)
QuoteAnd even if you do, why not look at OpnSense's DNS logs, if you care about who asks for what?Because I have Pi-Hole + Unbound running on a seperate Server for many years now and like to keep it that way so I have completely Disabled Unbound @ OPNsense right after the first boot.
Quote from: meyergru on Today at 12:50:35 PMI would rather instruct OpnSense itself to make use of your PiHole as upstream server and not instruct clients to use that directly.Horrible idea :
Quote from: dseven on Today at 07:19:11 PMIf you want Unbound (as your resolver) to be able to lookup internal domains managed by dnsmasq, you'll need to configure query forwarding as described at https://docs.opnsense.org/manual/dnsmasq.html#dhcpv4-with-dns-registration
Quote from: FredFresh on June 25, 2026, 09:10:19 PMI have a cpu n100 and 16gb of ram, keeping the unbound dns log active is detrimental for performances?That's what the warning says, but I guess whether you notice it or not depends on your system and query volume. Maybe it's not so bad for a small / not busy network.