Skip to content
This repository has been archived by the owner on Jan 1, 2020. It is now read-only.

Latest commit

 

History

History
81 lines (54 loc) · 2.57 KB

README.md

File metadata and controls

81 lines (54 loc) · 2.57 KB

unofficial unbound multiarch docker image

Docker Pulls Docker Stars

Unbound is a validating, recursive, and caching DNS resolver.

Architectures

The architectures supported by this image are:

  • linux/amd64
  • linux/arm64
  • linux/ppc64le
  • linux/s390x
  • linux/arm/v7
  • linux/arm/v6

Simply pulling klutchell/unbound should retrieve the correct image for your arch.

Building

# display available commands
make help

# clean dangling images, containers, and build instances
make clean

# build and test a local image
make

# cross-build on supported platforms with buildx
make buildx EXTRA_OPTS="--load --platform=linux/arm/v7"

Usage

NLnet Labs documentation: https://nlnetlabs.nl/documentation/unbound/

# print general usage
docker run --rm klutchell/unbound -h

# run a recursive dns server on host port 53
docker run -p 53:5053/tcp -p 53:5053/udp klutchell/unbound

# run unbound server with configuration mounted from a host directory
docker run --name unbound -p 53:5053/udp -v /path/to/config:/opt/unbound/etc/unbound klutchell/unbound

# generate a root trust anchor for DNSSEC validation
# assumes your existing container is named 'unbound' as in the example above
docker exec unbound unbound-anchor -v

Please note the following if you are using a custom configuration file:

  • chroot and username are not supported as the service is already running as nobody:nogroup
  • auto-trust-anchor-file should be omitted or set to root.key
  • any additional paths should be relative to /var/run/unbound

Author

Kyle Harding: https://klutchell.dev

Contributing

Please open an issue or submit a pull request with any features, fixes, or changes.

Acknowledgments

Original software is by NLnet Labs: https://github.com/NLnetLabs/unbound

Licenses