# Unbound configuration file for Debian.
#
# See the unbound.conf(5) man page.
#
# See /usr/share/doc/unbound/examples/unbound.conf for a commented
# reference config file.

server:
    # The following line will configure unbound to perform cryptographic
    # DNSSEC validation using the root trust anchor.
    auto-trust-anchor-file: "/var/lib/unbound/root.key"
	
#PERSO
root-hints: "/etc/unbound/root.hints"
verbosity: 1
num-threads: 1
interface: 0.0.0.0
do-ip4: yes
do-ip6: no
do-udp: yes
do-tcp: yes
access-control: 192.168.1.0/24 allow
chroot: ""
logfile: "/var/log/unbound.log"
use-syslog: no
hide-identity: yes
hide-version: yes
harden-glue: yes
harden-dnssec-stripped: yes
use-caps-for-id: yes
private-domain: "workgroup.lan"
local-zone: "workgroup.lan." static
local-data: "mafreebox.freebox.fr. IN A 212.27.38.253"
local-data: "ordi1.workgroup.lan. IN A 192.168.1.2"
local-data: "ordi2.workgroup.lan. IN A 192.168.1.3"
#include: /etc/unbound/unbound_antipub.conf
#résolution inverse : adresse -> nom
local-data-ptr: "212.27.38.253 mafreebox.freebox.fr"
local-data-ptr: "192.168.1.2 ordi1.workgroup.lan"
local-data-ptr: "192.168.1.3 ordi2.workgroup.lan"
python:
remote-control: