I'm running Unbound with the following configuration file:
Code:
# unbound.conf ~ DNS resolver configuration file
server:
interface: 10.0.20.15
interface: 127.0.0.1
do-ip6: no
access-control: 0.0.0.0/0 refuse
access-control: 127.0.0.0/8 allow
access-control: 10.0.5.0/24 allow
access-control: 10.0.10.0/24 allow
access-control: 10.0.20.0/24 allow
access-control: ::0/0 refuse
hide-identity: yes
hide-version: yes
# Enable DNSSEC validation.
auto-trust-anchor-file: "/var/unbound/db/root.key"
# Use root DNS servers
root-hints: "/var/unbound/etc/root.hints"
I had "systat states" open on my second monitor and was surfing on my laptop. From time to time, the number of states jumps from say 10 to 300 or more. Most of them are to port 53 to many different ip addresses.
I'm thinking that Unbound is querying the root DNS servers, but 300+ states?