sebelumnya gw udah memposting mengenai cara compile dan installasi unbound di slackware dan ubuntu. sekarang saatnya instalasi di windows
berikut caranya :
- Download dulu unboundnya di websitenya lsg dimari
- lalu buat file service.conf atau edit jika telah ada di C:\Program Files\unbound jika memakai 32bit atauC:\Program Files (x86)\unbound
ini settingan gw untuk 32bit
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Unbound configuration file on windows. | |
| # See example.conf for more settings and syntax | |
| server: auto-trust-anchor-file: "C:\Program Files\Unbound\root.key" | |
| verbosity: 1 | |
| statistics-interval: 120 | |
| num-threads: 1 | |
| interface: 0.0.0.0 | |
| outgoing-range: 512 | |
| num-queries-per-thread: 1024 | |
| msg-cache-size: 16m | |
| rrset-cache-size: 32m | |
| msg-cache-slabs: 4 | |
| rrset-cache-slabs: 4 | |
| cache-max-ttl: 86400 | |
| infra-host-ttl: 60 | |
| infra-lame-ttl: 120 | |
| infra-cache-numhosts: 10000 | |
| infra-cache-lame-size: 10k | |
| do-ip4: yes | |
| do-ip6: no | |
| do-udp: yes | |
| do-tcp: yes | |
| do-daemonize: yes | |
| #access-control: 0.0.0.0/0 allow | |
| #access-control: 192.168.100.0/27 allow | |
| #access-control: 172.16.0.0/12 allow | |
| #access-control: 10.0.0.0/8 allow | |
| access-control: 127.0.0.0/8 allow | |
| #access-control: 0.0.0.0/0 refuse | |
| #use-syslog: yes | |
| logfile: "" | |
| use-syslog: no | |
| identity: "DNS" | |
| version: "1.4" | |
| hide-identity: yes | |
| hide-version: yes | |
| harden-glue: yes | |
| do-not-query-address: 127.0.0.1/8 | |
| do-not-query-localhost: yes | |
| module-config: "iterator" | |
| #zone localhost | |
| local-zone: "localhost." static | |
| local-data: "localhost. 10800 IN NS localhost." | |
| local-data: "localhost. 10800 IN SOA localhost. nobody.invalid. 1 3600 1200 604800 10800" | |
| local-data: "localhost. 10800 IN A 127.0.0.1" | |
| local-zone: "127.in-addr.arpa." static | |
| local-data: "127.in-addr.arpa. 10800 IN NS localhost." | |
| local-data: "127.in-addr.arpa. 10800 IN SOA localhost. nobody.invalid. 2 3600 1200 604800 10800" | |
| local-data: "1.0.0.127.in-addr.arpa. 10800 IN PTR localhost." | |
| forward-zone: | |
| name: "." | |
| forward-addr: 8.8.8.8 | |
| forward-addr: 208.67.222.222 | |
| remote-control: | |
| control-enable: yes | |
| control-interface: 127.0.0.1 | |
| control-port: 953 | |
| server-key-file: "C:\Program Files\Unbound\unbound_server.key" | |
| server-cert-file: "C:\Program Files\Unbound\unbound_server.pem" | |
| control-key-file: "C:\Program Files\Unbound\unbound_control.key" | |
| control-cert-file: "C:\Program Files\Unbound\unbound_control.pem" |
dan ini settingan gw untuk 64bit
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Unbound configuration file on windows. | |
| # See example.conf for more settings and syntax | |
| server: auto-trust-anchor-file: "C:\Program Files (x86)\Unbound\root.key" | |
| verbosity: 1 | |
| statistics-interval: 120 | |
| num-threads: 1 | |
| interface: 0.0.0.0 | |
| outgoing-range: 512 | |
| num-queries-per-thread: 1024 | |
| msg-cache-size: 16m | |
| rrset-cache-size: 32m | |
| msg-cache-slabs: 4 | |
| rrset-cache-slabs: 4 | |
| cache-max-ttl: 86400 | |
| infra-host-ttl: 60 | |
| infra-lame-ttl: 120 | |
| infra-cache-numhosts: 10000 | |
| infra-cache-lame-size: 10k | |
| do-ip4: yes | |
| do-ip6: no | |
| do-udp: yes | |
| do-tcp: yes | |
| do-daemonize: yes | |
| #access-control: 0.0.0.0/0 allow | |
| #access-control: 192.168.100.0/27 allow | |
| #access-control: 172.16.0.0/12 allow | |
| #access-control: 10.0.0.0/8 allow | |
| access-control: 127.0.0.0/8 allow | |
| #access-control: 0.0.0.0/0 refuse | |
| #use-syslog: yes | |
| logfile: "" | |
| use-syslog: no | |
| identity: "DNS" | |
| version: "1.4" | |
| hide-identity: yes | |
| hide-version: yes | |
| harden-glue: yes | |
| do-not-query-address: 127.0.0.1/8 | |
| do-not-query-localhost: yes | |
| module-config: "iterator" | |
| #zone localhost | |
| local-zone: "localhost." static | |
| local-data: "localhost. 10800 IN NS localhost." | |
| local-data: "localhost. 10800 IN SOA localhost. nobody.invalid. 1 3600 1200 604800 10800" | |
| local-data: "localhost. 10800 IN A 127.0.0.1" | |
| local-zone: "127.in-addr.arpa." static | |
| local-data: "127.in-addr.arpa. 10800 IN NS localhost." | |
| local-data: "127.in-addr.arpa. 10800 IN SOA localhost. nobody.invalid. 2 3600 1200 604800 10800" | |
| local-data: "1.0.0.127.in-addr.arpa. 10800 IN PTR localhost." | |
| forward-zone: | |
| name: "." | |
| forward-addr: 8.8.8.8 | |
| forward-addr: 208.67.222.222 | |
| remote-control: | |
| control-enable: yes | |
| control-interface: 127.0.0.1 | |
| control-port: 953 | |
| server-key-file: "C:\Program Files (x86)\Unbound\unbound_server.key" | |
| server-cert-file: "C:\Program Files (x86)\Unbound\unbound_server.pem" | |
| control-key-file: "C:\Program Files (x86)\Unbound\unbound_control.key" | |
| control-cert-file: "C:\Program Files (x86)\Unbound\unbound_control.pem" |
- jalankan deh unboundnya lewat service management windows pasti lsg error
untuk mengatasinya perlu 4 file yang di generate khusus oleh sistem *nix
dibawah ini dah gw sertakan 4 file tersebut beserta isinya
silahkan dibuat sendiri melalui notepad++
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| -----BEGIN RSA PRIVATE KEY----- | |
| MIIDfQIBAAKBwQDAjkn5tcJfRSfvM5M3vwR6E+RK+9/iYblBW9PtzcIh7QL+vpWa | |
| IbHa8wd5vsUtbpBzdLetchFVRjdO5d4BCIHHppX2J+yhyry+f69fmc83lUYwWb45 | |
| NrPt7ekr12qbWY4iXMtowe+7/LYqwby0Z3DH07OvL6hdWaPwNdfqL6ztNX8w+cJn | |
| yjnWLYYC/osXHv7cr/jLQCebLjKvJ9kYbiIXpIFFJ2wCdjUUAiP1rfrxFwPKeJoK | |
| Wa4vHferdXUBZXECAwEAAQKBwAVTql47Ff52tk0auybepOwPotAkOaRUmcBiHvHE | |
| MGup19xeP1s9NWNeN8W5blD8bwiSoQYuUqZuQ9dt6n9S0exJAnsFzbkIF8KZW6uk | |
| YKQkAAYUZXvFtKKPY1TwJ6XWi1i4/N6XPjJEJkn0TVhb1AThJLtrUa7YR+WWhIlf | |
| iLEgj3UsHcvPmDZh3egjoDMCIwftAEoPWXpBVl/9Xav/6SNbLkTZK6LXZDI7gdbx | |
| Au/WX3TIMwMGub58povZgEC9sQJhAPKF411du4dEmppVe6xFaMRtqpxCUvZR00sb | |
| /j/pudzbpsYI8J32qjc0NtEnTQLHgciwdNbavrsr3wNtUL/OCA+8UsRC5bZS81/n | |
| j2GF75Ztq/BczxI+2zgNw2WNApFsZQJhAMtBkmTl25mhS7MTQRRkoCErWZ7+H0x9 | |
| VPhaFGu16e791wsf2CcbJbjxpMM0P0K/+QuFfHZadhALRloCT6wijaNTaEBNFlJ8 | |
| 6jYNTBQbWnLnkm3a3mxZ+VeXDD3+dcrGHQJhAJvjsAg9zeLfGDmIJRzQ6M0KaRZU | |
| E5u9cQHglodip1Pt5L9605/WBAfEClBa4Meeki/8LL5GkT8irhE33SXNO6VRuinp | |
| jlqp60KER8e6Hg0lpdW08m2Z9bOMNUM7ZqEveQJhAIuXOARFfIDRLp0IvyxTQ0ok | |
| bINuAW7VsJJzwwyKPeQdvx9rulZ5JXoTstVBP6UHFPIdtfHOhMDWDXXpmnActuuR | |
| b8qhZpA2K9/9V9+DPaYmdgEuTI1baYwHN6gn5xvg3QJgAK5s27dNEO4KYGENxJFs | |
| hSFy9IJSw0vDDE/f8AsbN8yZ1YUsTAEo6J05e8eQG89OK6e5WwVDowgSKhYuLiAM | |
| YmHnZq3IGgav8+5SAZrKVfFYH0sNlNgyhy+ZT9F0kp34 | |
| -----END RSA PRIVATE KEY----- |
save dengan nama unbound_control.key
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| -----BEGIN CERTIFICATE----- | |
| MIICGzCCAUQCCQD6VQKbWqdNgDANBgkqhkiG9w0BAQsFADASMRAwDgYDVQQDEwd1 | |
| bmJvdW5kMB4XDTEwMTAyMjA1MDAzNloXDTMwMDcwOTA1MDAzNlowEjEQMA4GA1UE | |
| AxMHdW5ib3VuZDCB3zANBgkqhkiG9w0BAQEFAAOBzQAwgckCgcEA3aJ937OKTmdw | |
| 2G2s9WanjKRhZ0k50LVaI4PTlYKqCrQZoRYUn8cVJQuMACDK3cizHC0LqWav/nT3 | |
| 0xD8IVP+LYG5MkTsT+EypaIZ1ry4dllgQPjP4nJAfnutWaTZMrr6jeKsCSRytWBm | |
| dxDRPyY2ZUIccf4tVQ1NOk7/nxD8lm6/Zs0Eg+dBeGoVf9br1RBV8R9t44Vh+q1u | |
| uVm2lfNa/P4u4LRtX0VSxxzu9KyFMHz3ebN2blvCTr0ov1/ioTQ7AgMBAAEwDQYJ | |
| KoZIhvcNAQELBQADgcEAgLdGAxioFn8U+0hY5jARn+AiriKk/sSarHRt9ha+k+JP | |
| EJtqw37/eTRI7dR4GAh4FJ8AE7unzNEnqCFEh+t3SbUYzcvcMNH+p355zjXWuerA | |
| RL2XXcGJbUClHGrUffG3w2YtyEkqqdRAssW6J1TGr34ubG9lgbSO9r5C8QIlTuCA | |
| KmkfC3K4xzVH9dg34HK+GvYxjD3vnTeC0tuA/999H3A5Qp3Y8m/8vzaJ9SGx0KXN | |
| qPCzKeaco7q+XQLl/JPs | |
| -----END CERTIFICATE----- |
save dengan nama unbound_server.pem
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| -----BEGIN RSA PRIVATE KEY----- | |
| MIIDfQIBAAKBwQDAjkn5tcJfRSfvM5M3vwR6E+RK+9/iYblBW9PtzcIh7QL+vpWa | |
| IbHa8wd5vsUtbpBzdLetchFVRjdO5d4BCIHHppX2J+yhyry+f69fmc83lUYwWb45 | |
| NrPt7ekr12qbWY4iXMtowe+7/LYqwby0Z3DH07OvL6hdWaPwNdfqL6ztNX8w+cJn | |
| yjnWLYYC/osXHv7cr/jLQCebLjKvJ9kYbiIXpIFFJ2wCdjUUAiP1rfrxFwPKeJoK | |
| Wa4vHferdXUBZXECAwEAAQKBwAVTql47Ff52tk0auybepOwPotAkOaRUmcBiHvHE | |
| MGup19xeP1s9NWNeN8W5blD8bwiSoQYuUqZuQ9dt6n9S0exJAnsFzbkIF8KZW6uk | |
| YKQkAAYUZXvFtKKPY1TwJ6XWi1i4/N6XPjJEJkn0TVhb1AThJLtrUa7YR+WWhIlf | |
| iLEgj3UsHcvPmDZh3egjoDMCIwftAEoPWXpBVl/9Xav/6SNbLkTZK6LXZDI7gdbx | |
| Au/WX3TIMwMGub58povZgEC9sQJhAPKF411du4dEmppVe6xFaMRtqpxCUvZR00sb | |
| /j/pudzbpsYI8J32qjc0NtEnTQLHgciwdNbavrsr3wNtUL/OCA+8UsRC5bZS81/n | |
| j2GF75Ztq/BczxI+2zgNw2WNApFsZQJhAMtBkmTl25mhS7MTQRRkoCErWZ7+H0x9 | |
| VPhaFGu16e791wsf2CcbJbjxpMM0P0K/+QuFfHZadhALRloCT6wijaNTaEBNFlJ8 | |
| 6jYNTBQbWnLnkm3a3mxZ+VeXDD3+dcrGHQJhAJvjsAg9zeLfGDmIJRzQ6M0KaRZU | |
| E5u9cQHglodip1Pt5L9605/WBAfEClBa4Meeki/8LL5GkT8irhE33SXNO6VRuinp | |
| jlqp60KER8e6Hg0lpdW08m2Z9bOMNUM7ZqEveQJhAIuXOARFfIDRLp0IvyxTQ0ok | |
| bINuAW7VsJJzwwyKPeQdvx9rulZ5JXoTstVBP6UHFPIdtfHOhMDWDXXpmnActuuR | |
| b8qhZpA2K9/9V9+DPaYmdgEuTI1baYwHN6gn5xvg3QJgAK5s27dNEO4KYGENxJFs | |
| hSFy9IJSw0vDDE/f8AsbN8yZ1YUsTAEo6J05e8eQG89OK6e5WwVDowgSKhYuLiAM | |
| YmHnZq3IGgav8+5SAZrKVfFYH0sNlNgyhy+ZT9F0kp34 | |
| -----END RSA PRIVATE KEY----- |
save dengan nama unbound_control.key
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| -----BEGIN CERTIFICATE----- | |
| MIICIzCCAUwCCQDl52baCpb0cDANBgkqhkiG9w0BAQsFADASMRAwDgYDVQQDEwd1 | |
| bmJvdW5kMB4XDTEwMTAyMjA1MDAzNloXDTMwMDcwOTA1MDAzNlowGjEYMBYGA1UE | |
| AxMPdW5ib3VuZC1jb250cm9sMIHfMA0GCSqGSIb3DQEBAQUAA4HNADCByQKBwQDA | |
| jkn5tcJfRSfvM5M3vwR6E+RK+9/iYblBW9PtzcIh7QL+vpWaIbHa8wd5vsUtbpBz | |
| dLetchFVRjdO5d4BCIHHppX2J+yhyry+f69fmc83lUYwWb45NrPt7ekr12qbWY4i | |
| XMtowe+7/LYqwby0Z3DH07OvL6hdWaPwNdfqL6ztNX8w+cJnyjnWLYYC/osXHv7c | |
| r/jLQCebLjKvJ9kYbiIXpIFFJ2wCdjUUAiP1rfrxFwPKeJoKWa4vHferdXUBZXEC | |
| AwEAATANBgkqhkiG9w0BAQsFAAOBwQCI+zJPiX9PyajVLYVJoVPwF+oq3xOElhgj | |
| oVNNr9mx5QSPgIuvES14Kw9Bxfof49BdPK7IGMFGMWfkSj/MwGEfcceeklIsct/b | |
| r72mL6//wClTiH2U+PPVah42XUGPawKc7f94NcOowJgyaAidTo1MXm0h/1rba2bv | |
| 0VU0/9ICsVV87Q+aIkkRjDNXjySnJaO6ECL4o3qFTO0adwTo72l+AsoWksDJy2PM | |
| ivSmj1mxP1RA/M3lNmFCCqGSR9avQDg= | |
| -----END CERTIFICATE----- |
save dengan nama unbound_control.pem
silahkan jadikan satu di folder unbound
klo udah lakukan pengecekan di unboundnya melalui CMD di
C:\Program Files\Unbound>unbound-checkconf.exeklo misalnya hasilnya no error berarti dah beres klo misal ada error akan diberitahu cluenya
klo udah silahkan restart unboundnya di service management dengan klik start menu - run lalu ketik services.msc cari dah unboundnya disana & tinggal klik restart
langkah selanjutnya :
- Klik kanan di LAN atau Wireless Network Connection, lalu pilih properties. Tergantung kalian pake LAN atau WIFI
- Lalu klik di internet protocol (TCP/IP) klik properties
- Lalu pilih Use the following DNS server addresses
- Masukkan preferred DNS server: 127.0.0.1
- Lalu klik ok
- lalu klik kanan di gambar jaringan di paling bawah kanan layar komputer kita, lalu pilih repair
NOTE :
- DNS diatas blm ditambahkan dengan dns nawala 180.131.144.144; 180.131.145.145
- jika ingin mengganti DNS maupun menambah silahkan merubah atau menambah di bagian forwarder zone
- untuk melalukan pengecekan silahkan melakukan dig. klo belum punya silahkan kemari
- bagi pemakai squid silahkan ditambahkan confignya dengan :
dns_nameservers 127.0.0.1- Tested under Windows XP, Windows 7