suricata: Increase memory size for the stream engine

[ipfire-2.x.git] / config / unbound / unbound.conf

diff --git a/config/unbound/unbound.conf b/config/unbound/unbound.conf
index a6cdc4d948df5d3fbf65e8dbcb9b590a97c49add..2cc5bab8a23eab251f1256787b515c01f3139f27 100644 (file)
--- a/config/unbound/unbound.conf
+++ b/config/unbound/unbound.conf
@@ -28,7 +28,7 @@ server:
        log-queries: no
 
        # Unbound Statistics
-       statistics-interval: 0
+       statistics-interval: 86400
        statistics-cumulative: yes
        extended-statistics: yes
 
@@ -59,10 +59,14 @@ server:
        harden-below-nxdomain: yes
        harden-referral-path: yes
        harden-algo-downgrade: no
-       use-caps-for-id: no
+       use-caps-for-id: yes
+       aggressive-nsec: yes
+
+       # Harden against DNS cache poisoning
+       unwanted-reply-threshold: 1000000
 
        # Listen on all interfaces
-       interface-automatic: no
+       interface-automatic: yes
        interface: 0.0.0.0
 
        # Allow access from everywhere