From 6bcb3b886ca50fc5d1cf248db3c06da8988c839c Mon Sep 17 00:00:00 2001 From: FĂ©lix Sipma Date: Fri, 4 May 2018 15:18:29 +0200 Subject: Unbound: add a warning note for CNAME --- src/Propellor/Property/Unbound.hs | 3 +++ 1 file changed, 3 insertions(+) diff --git a/src/Propellor/Property/Unbound.hs b/src/Propellor/Property/Unbound.hs index a17e5dd4..2949b8e0 100644 --- a/src/Propellor/Property/Unbound.hs +++ b/src/Propellor/Property/Unbound.hs @@ -126,6 +126,9 @@ genRecord dom (PTR revip) = Just $ unwords , "PTR" , dValue dom ] +-- | Be carefull with CNAMEs, unbound is not a primary DNS server, so it will +-- resolve these by itself. For a locally served zone, you probably want A/AAAA +-- records instead. genRecord dom (CNAME dest) = Just $ unwords [ dValue dom , "CNAME" -- cgit v1.2.3