From b61ae7c29557480b3bd2d14b4855ed19a4e08c27 Mon Sep 17 00:00:00 2001
From: Gitea Actions <actions@local>
Date: Thu, 16 Oct 2025 20:54:29 +0000
Subject: [PATCH] Auto-update blog content from Obsidian: 2025-10-16 20:54:29

---
 ...13-migration-opnsense-proxmox-highly-available.md | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/content/post/13-migration-opnsense-proxmox-highly-available.md b/content/post/13-migration-opnsense-proxmox-highly-available.md
index 2433929..c8ae749 100644
--- a/content/post/13-migration-opnsense-proxmox-highly-available.md
+++ b/content/post/13-migration-opnsense-proxmox-highly-available.md
@@ -233,6 +233,18 @@ Finally, I want to allow anything from my trusted networks. In `Firewall` > `Rul
 | **Description**            | Trusted                               |
 
 ### DNS
+
+For the DNS, I will use Unbound. It is a validating, recursive, caching DNS resolver built into OPNsense, which can:
+- Resolve queries from the root servers.
+- Cache results for faster responses.
+- Check domain authenticity with DNSSEC.
+- Add custom records.
+- Register hostname of DHCP leases.
+- Block domains based of blacklist.
+
+I
+
+
 ### DHCP
 ### VPN