[SOLVED] Unbound DNS blocking RFC 1918 and/or localhost?

[Patrick M. Hausen]

Hi all,

I set up unbound at our remote office as a local recursive name server and cache. This morning developers complain their local Docker based environments "stop working".

Looks like unbound does not like to return 127.0.0.1 as an A record for officially registered domains. True?

We have the "punkt.dev" domain with records pointing to that address so devs can access their local projects with a real FQDN and, more importantly, we can generate Letsencrypt certificates for those FQDNs. Otherwise a local /etc/hosts entry would be sufficient.

So - where is the "rebind protection" or "block local addresses" or whatever configured? I seem to be vision impaired this morning and cannot find it.

Thanks!
Patrick

[Patrick M. Hausen]

I found the "Private Domains" setting in the "Miscellaneous" section. Found it by studying the generated config files, because the help text, which I had read before, was not particularly helpful in my case. The reference to DNSBLs should be removed and the intent "permit local addresses as a query result" be made clear.

But no bug or big problem, all is well