Trouble in Unbound with Blocking Persistence

vivekmauli14 · September 16, 2024, 06:16:00 AM

Hello,

I am attempting to block specific websites using Unbound. However, when I block web such as WhatsApp or YouTube, the restrictions persist even after I clear all policies in the DNSBL and flush the state table. The blocked services only resume functioning after a few hours.

Could you please advise if there might be an error in my procedure, or suggest a method to expedite the process?

Thank you.

Saarbremer · September 16, 2024, 03:45:28 PM

There's no need to flush the state table of the firewall as the firewall remains unaffected by unbound's black listing.

What unbound does is to return NXdomain (if selected) or 0.0.0.0 (default, if not another ip is entered). In both cases, your client's local dns resolver will cache that result for the TTL (time to live). So, when you update the behaviour of unbound due to white or black lists you might want to restart unbound and flush the DNS cache on all affected clients. Or wait for the TTL to expire.

E.g. on windows you can do

Code Select

ipconfig /flushdns if I remember correctly.

Trouble in Unbound with Blocking Persistence

vivekmauli14

September 16, 2024, 06:16:00 AM

Saarbremer

September 16, 2024, 03:45:28 PM #1