On Tue, Apr 11, 2017 at 01:40:21AM -0700, Alice Wonder wrote:
Hello list -
http://unix.stackexchange.com/questions/90035/how-to-set-dns-resolver-in-fed...
That says it works for CentOS 5 and I *suspect* the methods there (3 listed) would work, but what is the best way with NetworkManager to set it up to use the localhost for DNS ?
I'm paranoid about DNS spoofing and really prefer to have a local instance of DNSSEC enforcing unbound running on my CentOS 7 virtual machines (e.g. linode)
Currently I just use a cron job that runs once a minute to over-write was it is /etc/resolv.conf so they don't use the DHCP assigned nameservers, but that does leave a short window every time the network is restarted.
Besides the suggested configs, if still worried you could set up an inotify watch on /etc/resolv.conf to let you know, or take action, whenever it changes.
jon