Add files via upload

Author: sohag1192

unbound.conf

@@ -0,0 +1,70 @@
+# Unbound configuration file for Debian.
+#
+# See the unbound.conf(5) man page.
+#
+# See /usr/share/doc/unbound/examples/unbound.conf for a commented
+# reference config file.
+#
+# The following line includes additional configuration files from the
+# /etc/unbound/unbound.conf.d directory.
+include-toplevel: "/etc/unbound/unbound.conf.d/*.conf"
+
+
+#Adding DNS-Over-TLS support
+server:
+    use-syslog: yes
+    username: "unbound"
+    directory: "/etc/unbound"
+    tls-cert-bundle: /etc/ssl/certs/ca-certificates.crt
+    
+    do-ip6: no
+    interface: 100.100.100.37
+    port: 53
+    prefetch: yes
+
+    root-hints: /usr/share/dns/root.hints
+    harden-dnssec-stripped: yes
+
+    cache-max-ttl: 14400
+    cache-min-ttl: 1200
+
+    aggressive-nsec: yes
+    hide-identity: yes
+    hide-version: yes
+    use-caps-for-id: yes
+
+
+#control which clients are allowed to make (recursive) queries
+	#access-control: 0.0.0.0/0 refuse
+	#access-control: 0.0.0.0/0 allow
+	access-control: 10.0.0.0/8 allow
+	access-control: 50.50.50.0/24 allow
+	access-control: 192.168.0.0/16 allow
+	access-control: 172.16.0.0/12 allow
+	access-control: 103.135.132.0/23 allow
+
+
+# local zone
+   local-zone: "sarkernet.lan." static
+   local-data: "ns.sarkernet.lan.  IN A 100.100.100.37"
+   local-data-ptr: "100.100.100.37  ns.sarkernet.lan"
+
+    num-threads: 4
+    msg-cache-slabs: 8
+    rrset-cache-slabs: 8
+    infra-cache-slabs: 8
+    key-cache-slabs: 8
+    rrset-cache-size: 256m
+    msg-cache-size: 128m
+    so-rcvbuf: 8m
+
+forward-zone:
+    name: "."
+    forward-ssl-upstream: yes
+    ## Also add IBM IPv6 Quad9 over TLS
+    forward-addr: 9.9.9.9@853#dns.quad9.net
+    forward-addr: 149.112.112.112@853#dns.quad9.net
+    
+	# Google
+        forward-addr: 8.8.8.8@853
+        forward-addr: 4.4.4.4@853