Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Unbound DNS as optional service #681

Merged
merged 15 commits into from Oct 30, 2018
Merged

Unbound DNS as optional service #681

merged 15 commits into from Oct 30, 2018

Conversation

muhlemmer
Copy link
Member

This PR supersedes #385 and #640. It aims to solve the problems discussed in #554.

This will add the unbound image and run it as service "resolver". It is an optional service and can only be included using the new setup application. Using the "resolver" service, will force the use of a fixed subnet. We have provided a default subnet which should stay clear of the Docker ranges.

Some key changes since the last PR #640:

  • Unbound is an optional optional service;
  • Unbound limits itself to allow only connections from $SUBNET, using jinja for config generation;
  • Unbound is used only on services that do lookups: smtp, fetchmail, antivirus and antispam.

obi12341 and others added 14 commits March 8, 2018 15:57
@obi12341
Adding unbound as dns resolver
d0f759a
@muhlemmer
Merge remote-tracking branch 'obi/feature/dns-resolver' into feat-unb…
676c408 
…ound-dns
@muhlemmer
Unbound: Use alpine:3.8
ada09f7
@muhlemmer
Add unbound to the build directive
013d02d
@muhlemmer
Some cleanup and changes:
cde22be 
- Don't upgrade the docker-compose file. (Not in the scope of this feature)
- No need to use aliases. Docker already resolves to service names
- Use a fixed IP range, which stays clear of the network ranges used by Docker. (172.xx.0.0/16)
@muhlemmer
Merge remote-tracking branch 'upstream/master' into feat-unbound-dns
5b7b29e
@muhlemmer
Revert docker-compose to latest upstream version
40d8e65
@muhlemmer
Standarize unbound, prepare for setup inclusion
bcfce27 
- Use jinja template for configuration file (start.py)
- Limit access to the Mailu subnet
- Implement health checks
@ionutfilip
Added unbound to setup
7c07efc 
- Added checkbox for unbound resolver
- Added subnet variable
- Added dns variable which is generating the ip address based on subnet
@ionutfilip
Fixed naming error
da37555
@muhlemmer
Fix unbound build path
12d8872
@ionutfilip
Fixed subnet variable in unbound
6c12e2f
@ionutfilip
Merge branch 'feat-unbound-dns' of github.com:usrpro/Mailu into feat-…
393bf56 
…unbound-dns
@ionutfilip
Added unbound for stack flavor
120c29e
@muhlemmer muhlemmer requested a review from a team October 23, 2018 14:49
@kaiyou
Copy link
Member

kaiyou commented Oct 30, 2018

This looks good to me and I am so glad we landed the setup wizard.

@mergify mergify bot merged commit e9217b8 into Mailu:master Oct 30, 2018
@muhlemmer muhlemmer deleted the feat-unbound-dns branch November 9, 2018 11:02
@muhlemmer muhlemmer mentioned this pull request Oct 15, 2019
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kaiyou kaiyou kaiyou approved these changes

@HorayNarea HorayNarea HorayNarea approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
5 participants
@muhlemmer @kaiyou @HorayNarea @obi12341 @ionutfilip