Instructions on how to install PowerDNS Recursor on macOS 10.12 Sierra.
These commands need to be run from the Terminal.
Installation
Install Homebrew
/usr/bin/ruby -e "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/master/install)"Install PowerDNS recursor
brew install pdnsrec
Download and install the boot script from this Gist
# Download boot script
sudo wget -O /Library/LaunchDaemons/homebrew.mxcl.pdnsrec.plist 'https://gist.githubusercontent.com/kometchtech/1cda9953aa51c1498183/raw/d85a7b283efef3c605e32d28a8f3ed07a41a2f1b/homebrew.mxcl.pdnsrec.plist'
sudo chown root:wheel /Library/LaunchDaemons/homebrew.mxcl.pdnsrec.plist
# Install boot script
sudo launchctl bootstrap system /Library/LaunchDaemons/homebrew.mxcl.pdnsrec.plist
# Start the recursor on boot
sudo launchctl enable system/homebrew.mxcl.pdnsrec
# Start it right now
sudo launchctl kickstart system/homebrew.mxcl.pdnsrecConfiguration
Security setting to prevent access from outside and enable DNSSEC validation.
cd /usr/local/etc/powerdns
cp -n recursor.conf-dist recursor.conf
echo "allow-from=127.0.0.0/8, ::1/128" >> recursor.conf
echo "dnssec=validate" >> recursor.confGo to System Preferences > Network and select your interface. Then go to Advanced > DNS tab and click the + to add a DNS server. Enter 127.0.0.1
You can further customize the resolver by editing the config file at /usr/local/etc/powerdns/recursor.conf
Reload config
When you’re done you need to restart the process like this:
sudo launchctl kickstart -k system/homebrew.mxcl.pdnsrec
Clearing the cache
To clear the local cache run:
sudo rec_control wipe-cache
or to clear only one domain zone:
sudo rec_control wipe-cache domain.name
Changelog
2020-02-28 – Rewrote config commands, they need to be overrides in case the file already exists.
2017-07-15 – Added DNSSEC validation, no more reboot required and replaced legacy launchctl commands.
Thanks to Babo D’s Corner for the commands.
Leave a Reply