dns: clean up unbound.conf a bit

1 files changed, 1 insertions, 10 deletions

diff --git a/roles/dns/files/unbound.conf b/roles/dns/files/unbound.conf
index 848945c..bd82e40 100644
--- a/roles/dns/files/unbound.conf
+++ b/roles/dns/files/unbound.conf
@@ -27,7 +27,6 @@ server:
     # Specify the interfaces to answer queries from by ip-address.
     # The default is to listen to localhost (127.0.0.1 and ::1).
     # Specify 0.0.0.0 and ::0 to bind to all available interfaces.
-    # Specify every interface[@port] on a new 'interface:' labelled line.
     # The listen interfaces are not changed on reload, only on restart.
     interface: 127.0.0.1
     interface: ::1
@@ -44,17 +43,11 @@ server:
     #   * deny_non_local (drop queries unless can be answered from local-data)
     #   * refuse_non_local (like deny_non_local but polite error reply)
     #
-    # access-control: 0.0.0.0/0 refuse
-    # access-control: 127.0.0.0/8 allow
-    # access-control: ::0/0 refuse
-    # access-control: ::1 allow
-    # access-control: ::ffff:127.0.0.1 allow
-    #
     access-control: 127.0.0.0/8 allow_snoop
     access-control: ::1         allow_snoop
 
     # Print statistics to the log (for every thread) every N seconds.
-    # Set to "" or 0 to disable.  Default is disabled.
+    # Default: 0 (i.e., disabled)
     statistics-interval: 7200
 
     # Enable or disable whether IPv4 queries are answered or issued.
@@ -64,11 +57,9 @@ server:
     do-ip6: yes
 
     # Enable or disable whether UDP queries are answered or issued.
-    # Default: yes
     do-udp: yes
 
     # Enable or disable whether TCP queries are answered or issued.
-    # Default: yes
     do-tcp: yes
 
     # Enable to not answer id.server and hostname.bind queries.