I want to be able to bypass DNSBL on some vlans and even though I have DNSBL set to not look at those VLANS I still see alerts coming from IP’s in that range. I have below posted my DNS Resolver custom options and I believe it may not be correctly formatted? Can someone assist me with this?
server:
access-control-view: 10.1.200.0/24 dnsbl
access-control-view: 10.1.50.0/24 bypass
access-control-view: 10.1.52.0/24 bypass
access-control-view: 10.1.1.0/24 bypass
access-control-view: 10.1.99.0/24 bypass
access-control-view: 10.1.10.0/24 bypass
access-control-view: 10.1.69.0/24 bypass
access-control-view: 10.1.12.0/24 bypass
access-control-view: 10.1.200.0/24 bypass
access-control-view: 10.1.55.0/24 bypass
ssl-upstream: yes
minimal-responses: yes
prefetch: yes
qname-minimisation: yes
rrset-roundrobin: yes
forward-zone:
name: "."
forward-addr: 9.9.9.9@853
forward-addr: 149.112.112.112@853
forward-addr: 10.0.0.241@853
forward-addr: 10.0.0.242@853
forward-addr: 10.0.0.243@853
view:
name: "bypass"
view-first: yes
view:
name: "dnsbl"
view-first: yes
include: /var/unbound/host_entries.conf