-- Refer to manual: https://knot-resolver.readthedocs.io/en/latest/daemon.html#configuration
-- Listen on localhost and external interface
net.listen('127.0.0.1', 5353)
net.listen('127.0.0.1', 8853, { tls = true })
net.ipv6=false

-- Auto-maintain root TA
trust_anchors.file = '.local/etc/knot-resolver/root.keys'

-- Large cache size, so we don't need to flush often
-- This can be larger than available RAM, least frequently accessed
-- records will be paged out
cache.size = 1024 * MB

-- Load Useful modules
modules = {
	'workarounds < iterate',
	'policy',   -- Block queries to local zones/bad sites
	'view',     -- Views for certain clients
	'hints',    -- Load /etc/hosts and allow custom root hints
	'stats',    -- Track internal statistics
}

verbose(true)