unbound-control

unbound-control [options] command

unbound-control is a utility for managing the Unbound DNS resolver daemon. It communicates with a running unbound server over a secure channel using TLS certificates.Before use, run unbound-control-setup to generate the required certificates and keys. The remote-control section must be enabled in unbound.conf.The tool enables runtime configuration changes including cache management, adding local zones and data, and modifying forwarding without restarting the server.

-c file

Configuration file path.

Server address to connect to.

Quiet mode.

Display help.

start: Start the server.stop: Stop the server.reload: Reload configuration.status: Show server status.stats: Display statistics.stats_noreset: Stats without resetting counters.flush name: Flush name from cache.flush_type name type: Flush specific RR type.flush_zone name: Flush entire zone.local_zone name type: Add local zone.local_data RR: Add local data.local_data_remove name: Remove local data.forward_add zone addr: Add forward zone.forward_remove zone: Remove forward zone.list_forwards: List forward zones.list_stubs: List stub zones.dump_cache: Dump cache to stdout.load_cache: Load cache from stdin.

Requires unbound-control-setup for initial certificate generation. Server must have remote-control enabled. Changes made via unbound-control are not persistent across restarts unless also in config file.

unbound-control is part of the Unbound DNS resolver developed by NLnet Labs. Unbound is a validating, recursive, caching DNS resolver designed for high performance and security with DNSSEC support.

unbound(8), unbound-checkconf(8), unbound-host(1)