https://github.com/klutchell/unbound-docker

unofficial unbound multiarch docker image
https://github.com/klutchell/unbound-docker

dns dns-over-https dns-server docker docker-image

Last synced: 3 months ago
JSON representation

unofficial unbound multiarch docker image

• Host: GitHub
• URL: https://github.com/klutchell/unbound-docker
• Owner: klutchell
• License: bsd-3-clause
• Created: 2020-12-08T21:15:54.000Z (over 4 years ago)
• Default Branch: main
• Last Pushed: 2025-03-24T04:45:16.000Z (3 months ago)
• Last Synced: 2025-03-29T02:03:44.965Z (3 months ago)
• Topics: dns, dns-over-https, dns-server, docker, docker-image
• Language: Dockerfile
• Homepage:
• Size: 817 KB
• Stars: 121
• Watchers: 7
• Forks: 23
• Open Issues: 14
• Metadata Files:
  • Readme: README.md
  • Contributing: CONTRIBUTING.md
  • License: LICENSE.md

Awesome Lists containing this project

README

        
# unofficial unbound multiarch docker image

[![Docker Pulls](https://img.shields.io/docker/pulls/klutchell/unbound.svg?style=flat-square)](https://hub.docker.com/r/klutchell/unbound)

[![Docker Stars](https://img.shields.io/docker/stars/klutchell/unbound.svg?style=flat-square)](https://hub.docker.com/r/klutchell/unbound)

[Unbound](https://unbound.net/) is a validating, recursive, and caching DNS

resolver.

Note that this image is

[distroless](https://github.com/GoogleContainerTools/distroless)!

> "Distroless" images contain only your application and its runtime

> dependencies. They do not contain package managers, shells or any other

> programs you would expect to find in a standard Linux distribution.

## Usage/Examples

Run a recursive dns server on host port 53 with the default configuration.

```bash

docker run --name unbound \

  -p 53:53/tcp -p 53:53/udp \

  klutchell/unbound

```

Optionally mount

[custom configuration](https://unbound.docs.nlnetlabs.nl/en/latest/manpages/unbound.conf.html)

from a host directory. Files must be readable by user/group `101:102` or world.

```bash

docker run --name unbound \

  -p 53:53/tcp -p 53:53/udp \

  -v /path/to/config:/etc/unbound/custom.conf.d \

  klutchell/unbound

```

### Optional: Enable CacheDB Module with Redis backend

The cache DB module was compiled into daemon, but is disabled by default. To

enable this module, follow this steps:

- Modify

  [unbound.conf](https://unbound.docs.nlnetlabs.nl/en/latest/manpages/unbound.conf.html#cache-db-module-options)

  to add the following directive:

  > module-config: "validator cachedb iterator"

- Create a `cachedb.conf` under your custom configuration directory

  `/path/to/config/custom.conf.d` with Redis credentials:

```bash

cachedb:

  backend: "redis"

  redis-server-host: redis

  redis-server-port: 6379

  redis-expire-records: yes

```

Files must be readable by user/group `101:102` or world.

Examples of docker-compose usage can be found in [examples](examples).

## License

This software is licensed under the [BSD 3-Clause License](LICENSE.md).

Original software is by NLnet Labs: