unbound-control

Check server status

$ unbound-control status

$ unbound-control stats

$ unbound-control reload

$ unbound-control flush_zone [.]

$ unbound-control flush [example.com]

$ unbound-control local_zone [example.com] [static]

$ unbound-control local_data "[example.com. A 192.168.1.1]"

$ unbound-control list_forwards

unbound-control [options] command

unbound-control is a utility for managing the Unbound DNS resolver daemon. It communicates with a running unbound server over a secure channel using TLS certificates.
Before use, run unbound-control-setup to generate the required certificates and keys. The remote-control section must be enabled in unbound.conf.
The tool enables runtime configuration changes including cache management, adding local zones and data, and modifying forwarding without restarting the server.

-c file

Configuration file path.

Server address to connect to.

Quiet mode.

Display help.

start: Start the server.
stop: Stop the server.
reload: Reload configuration.
status: Show server status.
stats: Display statistics.
stats_noreset: Stats without resetting counters.
flush name: Flush name from cache.
flush_type name type: Flush specific RR type.
flush_zone name: Flush entire zone.
local_zone name type: Add local zone.
local_data RR: Add local data.
local_data_remove name: Remove local data.
forward_add zone addr: Add forward zone.
forward_remove zone: Remove forward zone.
list_forwards: List forward zones.
list_stubs: List stub zones.
dump_cache: Dump cache to stdout.
load_cache: Load cache from stdin.

Requires unbound-control-setup for initial certificate generation. Server must have remote-control enabled. Changes made via unbound-control are not persistent across restarts unless also in config file.

unbound-control is part of the Unbound DNS resolver developed by NLnet Labs. Unbound is a validating, recursive, caching DNS resolver designed for high performance and security with DNSSEC support.

unbound(8), unbound-checkconf(8), unbound-host(1)