luci icon indicating copy to clipboard operation
luci copied to clipboard
verified publisher icon openwrt

luci-app-unbound: allow setting private-domain configuration

Open akostadinov opened this issue 2 years ago • 3 comments

Please allow setting one or more private-domain configuration directives to properly allows safer local network resolution.

Steps to reproduce:

  1. go to: Services → Recursive DNS → Advanced

Actual behavior:

There is option to set Filter Private Rebind but no option to specify private-domain list.

Expected behavior:

The should be an option to set private-domain list.

Additional Information:

DISTRIB_ID='OpenWrt'
DISTRIB_RELEASE='22.03.2'
DISTRIB_REVISION='r19803-9a599fee93'
DISTRIB_TARGET='ipq806x/generic'
DISTRIB_ARCH='arm_cortex-a15_neon-vfpv4'
DISTRIB_DESCRIPTION='OpenWrt 22.03.2 r19803-9a599fee93'
DISTRIB_TAINTS=''

akostadinov avatar Feb 20 '23 11:02 akostadinov

This is what breaks recursive name resolvers like nip.io and sslip.io.

Meanwhile, the option is to disable Filter Private Rebind and wait to be hacked :fearful:

DarkGhostHunter avatar Jul 02 '24 03:07 DarkGhostHunter

Changes here require changes in unbound startup modules to be effective. Search for the option there. Once you've added an option for $UB_TXT_DOMAIN then you can implement something in the GUI.

systemcrash avatar Jul 06 '24 13:07 systemcrash

Is this getting better on v24? or is it still present?

luisimasd avatar Apr 18 '25 22:04 luisimasd