Unbound (DNS server)

From Wikipedia, the free encyclopedia
Jump to navigation Jump to search
Unbound
Developer(s) NLnet Labs
Initial release February 19, 2007; 11 years ago (2007-02-19)
Stable release
1.7.0[1] / March 15, 2018; 4 months ago (2018-03-15)
Repository https://nlnetlabs.nl/svn/unbound/
Written in C
Operating system Unix-like, Windows
Type DNS server
License BSD license
Website unbound.net

Unbound is a validating, recursive, and caching DNS resolver product from NLnet Labs. It is distributed free of charge in open source form under the BSD license.

Features[edit]

  • Caching resolver with prefetching of popular items before they expire
  • DNS over TLS forwarding and server, with domain-validation[2]
  • DSNS64
  • DNSCrypt[3]
  • DNSSEC validating
  • EDNS Client Subnet

History[edit]

Originally designed by Jakob Schlyter of Kirei and Roy Arends of Nominet in 2004, funding was provided by VeriSign and ep.net to develop a prototype written in Java (David Blacka and Matt Larson, VeriSign). In 2006, the prototype was re-written for high-performance in the C programming language by NLnet Labs.

Unbound is designed as a set of modular components that incorporate modern features, such as enhanced security (DNSSEC) validation, Internet Protocol Version 6 (IPv6), and a client resolver application programming interface library as an integral part of the architecture. Originally written for POSIX-compatible Unix-like operating system, it runs on FreeBSD, OpenBSD, NetBSD, OS X, and Linux, as well as Microsoft Windows.

Reception[edit]

Unbound has supplanted the Berkeley Internet Name Daemon (BIND) as the default, base-system name server in two BSD-based open source distributions, where it is perceived as smaller, more modern, and more secure for most applications.[4][5]

See also[edit]

References[edit]

  1. ^ "Unbound 1.7.0 release". The Unbound-users Archives. 2018-03-15. Retrieved 2018-03-15. 
  2. ^ "Actually secure DNS over TLS in Unbound". Ctrl blog. 2018-06-07. Retrieved 2018-06-11. 
  3. ^ ""Adding DNSCrypt to Unbound". ProToxin. 2017-04-14. Retrieved 2018-06-11. 
  4. ^ "Heads Up: BIND Disabled in Base". OpenBSD Journal. August 23, 2014. Retrieved June 10, 2015. 
  5. ^ Dag-Erling Smørgrav (September 24, 2014). "DNS in FreeBSD 10". Dag-Erling Smørgrav's blog. Retrieved June 10, 2015. 

External links[edit]