servus,
zur zeit probiere ich grad unbound fürs DNS caching aus, und weil unbound auch optimierungsmöglichkeit bietet, hab ich auch das versucht, aber oh wunder! es will nicht so wie ichs mir denke.
versucht hab ichs mit dem:
server:
# use all CPUs
num-threads: 8
# more cache memory, rrset=msg*2
rrset-cache-size: 100m
msg-cache-size: 50m
# more outgoing connections
# depends on number of cores: 1024/cores - 50
outgoing-range: 950
# Larger socket buffer. OS may need config.
so-rcvbuf: 4m
so-sndbuf: 4m
# Faster UDP with multithreading (only on Linux).
so-reuseport: yes
ich hab das ganz stumpf hier kopiert: https://unbound.docs.nlnetlabs.nl/en/latest/topics/core/performance.html#
für´jede änderung bekomme ich so einen error, natürlich für jede geänderte zeile einen 😉
sudo unbound -dd
/etc/unbound/unbound.conf:79: error: syntax error
read /etc/unbound/unbound.conf failed: 1 errors in configuration file
[1763717844] unbound[6281:0] fatal error: Could not read config file: /etc/unbound/unbound.conf. Maybe try unbound -dd, it stays on the commandline to see more errors, or unbound-checkconf
edit
es scheint, als hätte ich generell etwas übersehen, fast alles steht auf 0
sudo unbound-control stats
thread0.num.queries=0
thread0.num.queries_ip_ratelimited=0
thread0.num.queries_cookie_valid=0
thread0.num.queries_cookie_client=0
thread0.num.queries_cookie_invalid=0
thread0.num.queries_discard_timeout=0
thread0.num.queries_wait_limit=0
thread0.num.cachehits=0
thread0.num.cachemiss=0
thread0.num.prefetch=0
thread0.num.queries_timed_out=0
thread0.query.queue_time_us.max=0
thread0.num.expired=0
thread0.num.recursivereplies=0
thread0.num.dnscrypt.crypted=0
thread0.num.dnscrypt.cert=0
thread0.num.dnscrypt.cleartext=0
thread0.num.dnscrypt.malformed=0
thread0.num.dns_error_reports=0
thread0.requestlist.avg=0
thread0.requestlist.max=0
thread0.requestlist.overwritten=0
thread0.requestlist.exceeded=0
thread0.requestlist.current.all=0
thread0.requestlist.current.user=0
thread0.recursion.time.avg=0.000000
thread0.recursion.time.median=0
thread0.tcpusage=0
total.num.queries=0
total.num.queries_ip_ratelimited=0
total.num.queries_cookie_valid=0
total.num.queries_cookie_client=0
total.num.queries_cookie_invalid=0
total.num.queries_discard_timeout=0
total.num.queries_wait_limit=0
total.num.cachehits=0
total.num.cachemiss=0
total.num.prefetch=0
total.num.queries_timed_out=0
total.query.queue_time_us.max=0
total.num.expired=0
total.num.recursivereplies=0
total.num.dnscrypt.crypted=0
total.num.dnscrypt.cert=0
total.num.dnscrypt.cleartext=0
total.num.dnscrypt.malformed=0
total.num.dns_error_reports=0
total.requestlist.avg=0
total.requestlist.max=0
total.requestlist.overwritten=0
total.requestlist.exceeded=0
total.requestlist.current.all=0
total.requestlist.current.user=0
total.recursion.time.avg=0.000000
total.recursion.time.median=0
total.tcpusage=0
time.now=1763724087.642115
time.up=7529.117185
time.elapsed=47.692364
meine config:
include: "/etc/unbound/resolvconf.conf"
server:
root-hints: root.hints
prefetch: yes
serve-expired: yes
serve-expired-ttl: 172800 # between 86400 (1 day) and 259200 (3 days)
serve-expired-client-timeout: 1800 # RFC 8767 recommended value
private-domain: "intranet"
private-domain: "internal"
private-domain: "private"
private-domain: "corp"
private-domain: "home"
private-domain: "lan"
unblock-lan-zones: yes
insecure-lan-zones: yes
domain-insecure: "intranet"
domain-insecure: "internal"
domain-insecure: "private"
domain-insecure: "corp"
domain-insecure: "home"
domain-insecure: "lan"
private-address: 10.0.0.0/8
private-address: 172.16.0.0/12
private-address: 192.168.0.0/16
private-address: 169.254.0.0/16
private-address: fd00::/8
private-address: fe80::/10
local-zone: "10.in-addr.arpa." transparent
forward-zone:
name: "10.in-addr.arpa."
forward-addr: 10.0.0.1
forward-addr: 217.237.151.115
edit: codeblöcke