openvpn.conf: TAB/ident

All entries after "server:" with a TAP/ident
This commit is contained in:
Henry N 2020-04-07 20:21:32 +02:00 committed by GitHub
parent d670973f0b
commit fdd576eea5
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -127,23 +127,23 @@ function installUnbound () {
# Add Unbound 'server' for the OpenVPN subnet # Add Unbound 'server' for the OpenVPN subnet
mkdir -p /etc/unbound/unbound.conf.d mkdir -p /etc/unbound/unbound.conf.d
echo 'server: echo 'server:
interface: 10.8.0.1 interface: 10.8.0.1
access-control: 10.8.0.1/24 allow access-control: 10.8.0.1/24 allow
hide-identity: yes hide-identity: yes
hide-version: yes hide-version: yes
use-caps-for-id: yes use-caps-for-id: yes
harden-glue: yes harden-glue: yes
qname-minimisation: yes qname-minimisation: yes
prefetch: yes prefetch: yes
# DNS Rebinding fix # DNS Rebinding fix
private-address: 10.0.0.0/8 private-address: 10.0.0.0/8
private-address: 172.16.0.0/12 private-address: 172.16.0.0/12
private-address: 192.168.0.0/16 private-address: 192.168.0.0/16
private-address: 169.254.0.0/16 private-address: 169.254.0.0/16
private-address: fd00::/8 private-address: fd00::/8
private-address: fe80::/10 private-address: fe80::/10
private-address: 127.0.0.0/8 private-address: 127.0.0.0/8
private-address: ::ffff:0:0/96' >/etc/unbound/unbound.conf.d/openvpn.conf private-address: ::ffff:0:0/96' >/etc/unbound/unbound.conf.d/openvpn.conf
# Add as include, if no wildcard include exist # Add as include, if no wildcard include exist
if ! grep -q '/etc/unbound/unbound.conf.d/' /etc/unbound/unbound.conf; then if ! grep -q '/etc/unbound/unbound.conf.d/' /etc/unbound/unbound.conf; then