Unbound unbound dns firewall (noobish question)

  • ATTENTION! You'll notice a Prefix dropdown when you create a thread. If your post applies to one of the topics listed, please use that Prefix for your post. When browsing the thread list you can use the Prefix to filter the view.
  • ATTENTION! As of November 1, 2020, you are not able to reply to threads 6 months after the thread is opened if there are more than 500 posts in the thread.
    Threads will not be locked, so posts may still be edited by their authors.
    Just start a new thread on the topic to post if you get an error message when trying to reply to a thread.

gmt

Occasional Visitor
Hello guys, got a question related to unbound (installed on AX86U) , specifically to the unbound GUI, what is the purpose of DNS firewall (what should be reflected there in case it contains something) and why it is completely empty in my case.

Thanks for your inputs
 

Attachments

  • unbound.JPG
    unbound.JPG
    34.8 KB · Views: 44
  • unbound_dns_firewall.JPG
    unbound_dns_firewall.JPG
    48.9 KB · Views: 44

Martineau

Part of the Furniture

gmt

Occasional Visitor
Hi, thank you Martineau, I have Diversion enabled which causes unbound to throw a conflict message, so I've decided to not enable AdBlock in unbound. OK, so now It is clear what DNS firewall does "by enabling the DNS firewall in unbound_manager , this creates a cron job every 15 mins to refresh the rules maintained by URLhaus". The fact that the GUI graph is empty means there are no hits on the malware rules detected if I understand correctly.
 

Martineau

Part of the Furniture
Hi, thank you Martineau, I have Diversion enabled which causes unbound to throw a conflict message, so I've decided to not enable AdBlock in unbound. OK, so now It is clear what DNS firewall does "by enabling the DNS firewall in unbound_manager , this creates a cron job every 15 mins to refresh the rules maintained by URLhaus". The fact that the GUI graph is empty means there are no hits on the malware rules detected if I understand correctly.

As per the FAQ
You can enable both AdBlock+Unbound concurrently.

You should click/read the URLHaus description to understand how/why they provide the RPZ DNS Firewall rules, and what the DNS Firewall is designed to do.

However, personally I recall I have only ever observed one specific DNS Firewall hit on the GUI graphs, but it is refreshed every 15mins since URLHaus attempts to be proactive in responding quickly to emerging/identified current real-time threats, so I leave it ACTIVE - just in case.
 
Last edited:

gmt

Occasional Visitor
Thank you!
 

Martineau

Part of the Furniture
Thank you!
No problem.

P.S. As per the convention in the Addons forum, could you please edit the thread title with the unbound prefix filter.
 

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top