Re: [mod-security-users] RBL lookup/block not working
Brought to you by:
victorhora,
zimmerletw
From: Reindl H. <h.r...@th...> - 2016-07-26 20:34:37
|
Am 26.07.2016 um 22:30 schrieb Riemann.: > I feel silly, but after I moved jwall-rbld to a remote server and > started watching traffic, I saw all DNS requests not specifically > addressed at localhost (e.g. nslookup test.example.com > <http://test.example.com> vs. nslookup test.example.com > <http://test.example.com> 127.0.0.1) were still going out to the domain > DNS server. > > I mistakenly thought Unbound would become the default DNS server if I > disabled the local DNS service and installed Unbound, and didn't > discover this wasn't the case until I made the traffic easier to monitor > (Windows doesn't have a localhost interface the same way *nix does). > When I changed the interface IPv4 settings, things (mostly) worked as > expected. I think I've still got some Unbound config issues work out, > since I'd rather not send all DNS requests through jwall-rbld (to limit > the amount of internal network traffic), but overall, the ModSecurity > and JWall portions work. nothing becomes the "default DNS server" by magic /etc/reslov.conf defines the default dns server |