1server: 2 verbosity: 4 3 num-threads: 1 4 outgoing-range: 16 5 interface: 127.0.0.1 6 port: @PORT@ 7 use-syslog: no 8 directory: "" 9 pidfile: "unbound.pid" 10 chroot: "" 11 username: "" 12 do-not-query-localhost: no 13 local-zone: "example.net." redirect 14 local-data: "example.net. IN A 10.20.30.41" 15remote-control: 16 control-enable: yes 17 control-interface: 127.0.0.1 18 # control-interface: ::1 19 control-port: @CONTROL_PORT@ 20 server-key-file: "unbound_server.key" 21 server-cert-file: "unbound_server.pem" 22 control-key-file: "unbound_control.key" 23 control-cert-file: "unbound_control.pem" 24forward-zone: 25 name: "." 26 forward-addr: "127.0.0.1@@TOPORT@" 27dnstap: 28 dnstap-enable: yes 29 dnstap-socket-path: "dnstap.socket" 30 dnstap-ip: "127.0.0.1@@TAPPORT@" 31 dnstap-tls: yes 32 dnstap-tls-server-name: "unbound" 33 # the actual tls cert bundle that authenticates the server 34 # is the unbound_server.pem bundle. 35 # we pass the wrong bundle. (of another key we also use in the client 36 # authentication test) 37 dnstap-tls-cert-bundle: "unbound_control.pem" 38 dnstap-send-identity: yes 39 dnstap-send-version: yes 40 #dnstap-identity 41 #dnstap-version 42 dnstap-log-resolver-query-messages: yes 43 dnstap-log-resolver-response-messages: yes 44 dnstap-log-client-query-messages: yes 45 dnstap-log-client-response-messages: yes 46 dnstap-log-forwarder-query-messages: yes 47 dnstap-log-forwarder-response-messages: yes 48 49